Lucene search
K

153 matches found

Debian CVE
Debian CVE
added 2026/06/26 7:41 p.m.8 views

CVE-2026-53312

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table it should support a gather-end of ULONGMAX, but if this happens it will infinite loop because of the overflow. Also avoid...

5.5CVSS5.9AI score0.00112EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in exiv2

Exiv2 0.27.2 allows attackers to cause a crash in the Exiv2::getULong function in types.cpp, when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimageint.cpp. This occurs because there is no validation of the relationship between the total size and the offset and size...

6.5CVSS6.8AI score0.01851EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in imagemagick

A flaw was discovered in ImageMagick in the coders/txt.c file. An attacker who submits a crafted file processed by ImageMagick could trigger undefined behavior, resulting in values that are outside the range of the type unsigned long long. This likely leads to a disruption in the application’s...

4.3CVSS6.5AI score0.01124EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Avoid using test/setbit operations on non-allocated memory. There is a potential for out-of-bounds access when using testbit on a single word. The testbit and setbit functions operate on long values, and when testi...

7.8CVSS6.4AI score0.00302EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: fixed the potential integer overflow that could occur when shifting an int. The left shift of the 32-bit integer constant 1 is evaluated using 32-bit arithmetic, and then passed as a 64-bit function argument. In cas...

5.5CVSS6.3AI score0.00178EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in imagemagick

A vulnerability was discovered in ImageMagick, causing a value of type ‘unsigned long’ to fall outside the representable value range when crafted or untrusted input is processed in the coders/pcl.c file. This results in a negative impact on the availability of the application or other issues...

7.8CVSS6.6AI score0.01339EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: binfmtflat: Fixed an integer overflow bug on 32-bit systems. Most of these sizes and counts are capped at 256MB, so the calculations do not result in integer overflows. The “relocs” count also needs to be checked. Otherwise, o...

5.5CVSS6.5AI score0.00216EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: gpio: gpio-xilinx: Fix integer overflow The current implementation cannot configure more than 32 pins due to an incorrect data type. Therefore, type casting using unsigned long is used to avoid this issue...

5.5CVSS6.3AI score0.00243EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.9 views

Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017620)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017620 advisory. A flaw was found in ImageMagick in MagickCore/quantum-export.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined...

4.3CVSS6.7AI score0.01114EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.12 views

Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017571)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017571 advisory. A floating point math calculation in ScaleAnyToQuantum of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a value outside the range of...

4.3CVSS5.8AI score0.01072EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/26 12:0 a.m.4 views

Unity Linux 20.1060a Security Update: kernel (UTSA-2026-014344)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014344 advisory. In the Linux kernel, the following vulnerability has been resolved: gpio: gpio-xilinx: Fix integer overflow Current implementation is not able to configure more than...

5.5CVSS5.9AI score0.00243EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/04/24 2:42 p.m.7 views

CVE-2026-31590

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Drop WARN on large size for KVMMEMORYENCRYPTREGREGION Drop the WARN in sevpinmemory on npages overflowing an int, as the WARN is comically trivially to trigger from userspace, e.g. by doing: struct kvmencregion range =...

5.5CVSS5.3AI score0.00125EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013728)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013728 advisory. In the Linux kernel, the following vulnerability has been resolved: perf: armspe: Prevent overflow in PERFIDX2OFF Cast nrpages to unsigned long to avoid overflow whe...

5.8AI score0.00193EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/14 7:23 p.m.7 views

CVE-2026-5442

A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation VR Unsigned Long UL, instead of the expected VR Unsigned Short US, which allows extremely large dimensions to be processed. This causes an integer overflow during frame...

9.8CVSS6AI score0.00598EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/09 3:35 p.m.4 views

EUVD-2026-20920

A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation VR Unsigned Long UL, instead of the expected VR Unsigned Short US, which allows extremely large dimensions to be processed. This causes an integer overflow during frame...

6.1AI score0.00598EPSS
Exploits0References4
NVD
NVD
added 2026/04/09 3:16 p.m.4 views

CVE-2026-5442

A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation VR Unsigned Long UL, instead of the expected VR Unsigned Short US, which allows extremely large dimensions to be processed. This causes an integer overflow during frame...

9.8CVSS0.00598EPSS
Exploits0References3
OSV
OSV
added 2026/04/09 3:16 p.m.6 views

DEBIAN-CVE-2026-5442

A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation VR Unsigned Long UL, instead of the expected VR Unsigned Short US, which allows extremely large dimensions to be processed. This causes an integer overflow during frame...

9.8CVSS5.6AI score0.00598EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/04/09 3:16 p.m.5 views

CVE-2026-5442

A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation VR Unsigned Long UL, instead of the expected VR Unsigned Short US, which allows extremely large dimensions to be processed. This causes an integer overflow during frame...

9.8CVSS6AI score0.00598EPSS
Exploits0References4
OSV
OSV
added 2026/04/09 3:16 p.m.6 views

UBUNTU-CVE-2026-5442

A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation VR Unsigned Long UL, instead of the expected VR Unsigned Short US, which allows extremely large dimensions to be processed. This causes an integer overflow during frame...

9.8CVSS6AI score0.00598EPSS
Exploits0References5
CVE
CVE
added 2026/04/09 2:43 p.m.20 views

CVE-2026-5442

CVE-2026-5442 describes a heap buffer overflow in the DICOM image decoder caused by encoding dimension fields with VR UL instead of VR US, enabling abnormally large dimensions, which leads to an integer overflow in frame size calculation and out-of-bounds memory access during decoding. Affected c...

9.8CVSS6.1AI score0.00598EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder