Lucene search
K

42 matches found

NVD
NVD
added 2025/09/18 2:15 p.m.7 views

CVE-2022-50390

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix undefined behavior in bit shift for TTMTTFLAGPRIVPOPULATED Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN:...

5.5CVSS0.00152EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/09/18 1:33 p.m.3 views

CVE-2022-50390

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix undefined behavior in bit shift for TTMTTFLAGPRIVPOPULATED Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN:...

5.5CVSS5.1AI score0.00152EPSS
Exploits0
OSV
OSV
added 2025/09/11 4:56 p.m.5 views

CVE-2025-39788 scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: exynos: Fix programming of HCIUTRLNEXUSTYPE On Google gs101, the number of UTP transfer request slots nutrs is 32, and in this case the driver ends up programming the UTRLNEXUSTYPE incorrectly as 0. This is because the...

7.8CVSS6AI score0.00155EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2025/09/04 11:23 p.m.6 views

SUSE CVE-2025-38710

In the Linux kernel, the following vulnerability has been resolved: gfs2: Validate idepth for exhash directories A fuzzer test introduced corruption that ends up with a depth of 0 in direread, causing an undefined shift by 32 at: index = hash 32 - dip-idepth; As calculated in an open-coded way in...

6.4CVSS6.5AI score0.00136EPSS
Exploits0References13
OSV
OSV
added 2025/09/04 4:15 p.m.3 views

DEBIAN-CVE-2025-38710

In the Linux kernel, the following vulnerability has been resolved: gfs2: Validate idepth for exhash directories A fuzzer test introduced corruption that ends up with a depth of 0 in direread, causing an undefined shift by 32 at: index = hash 32 - dip-idepth; As calculated in an open-coded way in...

5.5CVSS5.5AI score0.00136EPSS
Exploits0References1
CVE
CVE
added 2025/09/04 3:33 p.m.38 views

CVE-2025-38710

CVE-2025-38710 (gfs2 depth validation) : Linux kernel fix for exhash directories in GFS2. A fuzzer caused a depth of 0 in dir_e_read(), triggering an undefined shift by 32 in index = hash >> (32 - dip->i_depth). The minimum exhash depth is ilog2(sdp->sd_hash_ptrs) and 0 is invalid sin...

5.5CVSS5.9AI score0.00136EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/09/04 3:33 p.m.3 views

CVE-2025-38710 gfs2: Validate i_depth for exhash directories

In the Linux kernel, the following vulnerability has been resolved: gfs2: Validate idepth for exhash directories A fuzzer test introduced corruption that ends up with a depth of 0 in direread, causing an undefined shift by 32 at: index = hash 32 - dip-idepth; As calculated in an open-coded way in...

5.5CVSS6.2AI score0.00136EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.3 views

PT-2025-35983

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the validation of i depth for exhash directories within the gfs2 filesystem. A fuzzer test revealed corruption leading to a depth of 0 in dir...

5.5CVSS5.8AI score0.00136EPSS
Exploits0
OSV
OSV
added 2025/05/01 3:16 p.m.9 views

UBUNTU-CVE-2022-49870

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAPTOMASK Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds in...

7.1CVSS6.1AI score0.0019EPSS
Exploits0References11
OSV
OSV
added 2025/02/27 3:15 a.m.4 views

UBUNTU-CVE-2025-21789

In the Linux kernel, the following vulnerability has been resolved: LoongArch: csum: Fix OoB access in IP checksum code for negative lengths Commit 69e3a6aa6be2 "LoongArch: Add checksum optimization for 64-bit system" would cause an undefined shift and an out-of-bounds read. Commit 8bd795fedb84...

7.1CVSS6.5AI score0.00216EPSS
Exploits0References7
OSV
OSV
added 2024/11/12 5:21 p.m.10 views

CLSA-2024-1731432106 ImageMagick: Fix of 2 CVEs

CVE-2020-27751: fix undefined behavior due to an overly large shift exponent in quantum-export.c - CVE-2020-27768: fix NaN being outside the range of representable values issue in quantum-private.h...

4.3CVSS6.8AI score0.01362EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2022/05/10 1:58 p.m.4 views

kernel: Linux kernel: integer overflow and information disclosure via undefined shift operation in drm/amdkfd

A flaw was found in the Linux kernel’s AMD Kernel Fusion Driver amdkfd within the drm subsystem. When either getnumsdmaqueues or getnumxgmisdmaqueues returned 0, the driver performed a bit shift where the number of bits shifted equaled the operand width. Such a shift is undefined behavior in C an...

7.1CVSS5.8AI score0.0015EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/08/26 12:0 a.m.29 views

openSUSE: Security Advisory for openexr (openSUSE-SU-2021:1198-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.5AI score0.01848EPSS
Exploits1References2
OSV
OSV
added 2021/08/25 7:51 p.m.5 views

OPENSUSE-SU-2021:1198-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-20298 bsc1188460: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 bsc1188459: Fixed Null-dereference READ in Imf25:Header:operator - CVE-2021-20300 bsc1188458: Fixed Integer-overflow in Imf25:hufUncompress - CVE-2021-20302...

7.5CVSS5.8AI score0.01848EPSS
Exploits1References14
OSV
OSV
added 2021/08/20 8:23 a.m.6 views

SUSE-SU-2021:2793-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-20298 bsc1188460: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 bsc1188459: Fixed Null-dereference READ in Imf25:Header:operator - CVE-2021-20300 bsc1188458: Fixed Integer-overflow in Imf25:hufUncompress - CVE-2021-20302...

7.5CVSS6.3AI score0.01848EPSS
Exploits1References14
Positive Technologies
Positive Technologies
added 2021/08/20 12:0 a.m.2 views

PT-2022-9180 · Openexr +1 · Openexr +1

Name of the Vulnerable Software and Affected Versions: OpenEXR affected versions not specified Description: A flaw in OpenEXR's hufDecode functionality allows an attacker to trigger an undefined right shift error by passing a crafted file to be processed by OpenEXR. The highest threat from this...

7.5CVSS6AI score0.01848EPSS
Exploits1References54
Tenable Nessus
Tenable Nessus
added 2021/04/12 12:0 a.m.36 views

openSUSE Security Update : openexr (openSUSE-2021-536)

This update for openexr fixes the following issues : - CVE-2021-3474: Undefined-shift in Imf25::FastHufDecoder::FastHufDecoder bsc1184174 - CVE-2021-3475: Integer-overflow in Imf25::calculateNumTiles bsc1184173 - CVE-2021-3476: Undefined-shift in Imf25::unpack14 bsc1184172 This update was importe...

5.3CVSS6.2AI score0.01848EPSS
Exploits0References6
OPENSUSE Linux
OPENSUSE Linux
added 2021/04/11 12:0 a.m.31 views

Security update for openexr (moderate)

openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2021:0536-1 Rating: moderate References: 1184172 1184173 1184174 Cross-References: CVE-2021-3474 CVE-2021-3475 CVE-2021-3476 CVSS scores: CVE-2021-3474 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L...

5.3CVSS6.3AI score0.01848EPSS
Exploits0References3
OSV
OSV
added 2021/04/10 10:5 p.m.4 views

OPENSUSE-SU-2021:0536-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-3474: Undefined-shift in Imf25::FastHufDecoder::FastHufDecoder bsc1184174 - CVE-2021-3475: Integer-overflow in Imf25::calculateNumTiles bsc1184173 - CVE-2021-3476: Undefined-shift in Imf25::unpack14 bsc1184172 This update was imported...

5.3CVSS5.6AI score0.01848EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2021/04/08 12:0 a.m.35 views

SUSE SLED15 / SLES15 Security Update : openexr (SUSE-SU-2021:1097-1)

This update for openexr fixes the following issues : CVE-2021-3474: Undefined-shift in Imf25::FastHufDecoder::FastHufDecoder bsc1184174 CVE-2021-3475: Integer-overflow in Imf25::calculateNumTiles bsc1184173 CVE-2021-3476: Undefined-shift in Imf25::unpack14 bsc1184172 Note that Tenable Network...

5.3CVSS6.2AI score0.01848EPSS
Exploits0References10
Rows per page
Query Builder