Lucene search
+L

8 matches found

redhatcve
redhatcve
added 2026/03/02 5:13 p.m.7 views

CVE-2026-3196

An integer overflow vulnerability was found in the virtio-snd device via PCMINFO requests from the guest. A malicious guest can provide out-of-bounds stream counts, potentially leading to unbounded memory allocation on the host and a denial of service condition...

5.5CVSS5.9AI score0.00102EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2025/12/24 11:15 a.m.10 views

CVE-2025-68346

In the Linux kernel, the following vulnerability has been resolved: ALSA: dice: fix buffer overflow in detectstreamformats The function detectstreamformats reads the streamcount value directly from a FireWire device without validating it. This can lead to out-of-bounds writes when a malicious...

6.1AI score0.00196EPSS
Exploits0References35
attackerkb
attackerkb
added 2025/12/24 10:32 a.m.3 views

CVE-2025-68346

In the Linux kernel, the following vulnerability has been resolved: ALSA: dice: fix buffer overflow in detectstreamformats The function detectstreamformats reads the streamcount value directly from a FireWire device without validating it. This can lead to out-of-bounds writes when a malicious...

5.4AI score0.00196EPSS
Exploits0References9Affected Software1
osv
osv
added 2025/12/24 10:32 a.m.6 views

CVE-2025-68346 ALSA: dice: fix buffer overflow in detect_stream_formats()

In the Linux kernel, the following vulnerability has been resolved: ALSA: dice: fix buffer overflow in detectstreamformats The function detectstreamformats reads the streamcount value directly from a FireWire device without validating it. This can lead to out-of-bounds writes when a malicious...

6.8AI score0.00196EPSS
Exploits0References11
cvelist
cvelist
added 2025/12/24 10:32 a.m.29 views

CVE-2025-68346 ALSA: dice: fix buffer overflow in detect_stream_formats()

In the Linux kernel, the following vulnerability has been resolved: ALSA: dice: fix buffer overflow in detectstreamformats The function detectstreamformats reads the streamcount value directly from a FireWire device without validating it. This can lead to out-of-bounds writes when a malicious...

0.00196EPSS
Exploits0References8
nvd
nvd
added 2025/09/16 8:15 a.m.5 views

CVE-2023-53296

In the Linux kernel, the following vulnerability has been resolved: sctp: check send stream number after waitforsndbuf This patch fixes a corner case where the asoc out stream count may change after waitforsndbuf. When the main thread in the client starts a connection, if its out stream count is...

5.5CVSS0.00137EPSS
Exploits0References7
osv
osv
added 2025/09/16 8:11 a.m.5 views

CVE-2023-53296 sctp: check send stream number after wait_for_sndbuf

In the Linux kernel, the following vulnerability has been resolved: sctp: check send stream number after waitforsndbuf This patch fixes a corner case where the asoc out stream count may change after waitforsndbuf. When the main thread in the client starts a connection, if its out stream count is...

5.5CVSS4.8AI score0.00137EPSS
Exploits0References10
ptsecurity
ptsecurity
added 2025/09/16 12:0 a.m.5 views

PT-2025-37901

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel’s SCTP Stream Control Transmission Protocol implementation. Specifically, the issue arises from a corner case where the association asoc out stream...

6AI score0.00137EPSS
Exploits0References10
Rows per page
Query Builder