EUVD-2024-30435

Malicious code in bioql PyPI...

CVE-2022-50390

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix undefined behavior in bit shift for TTMTTFLAGPRIVPOPULATED Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN:...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the vfio/type1 container not properly handling the lockedvm count when executing exec, which could result in...

SUSE CVE-2022-49907

In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds ...

CVE-2025-21475

CVE-2025-21475 describes memory corruption in Qualcomm chipsets when handling an escape code, triggered by passing a large unsigned value for DisplayId . Affected software/hardware: Qualcomm chipsets (details not expanded in provided documents). The root cause is memory corruption in the escape c...

TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.

...

DEBIAN-CVE-2022-49907

In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds ...

PT-2025-18447

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A division by zero issue has been resolved in the Linux kernel. The problem occurs when a user sets a speed value greater than UINT MAX/8, making division by zero possible. This issue wa...

CVE-2021-47604 vduse: check that offset is within bounds in get_config()

In the Linux kernel, the following vulnerability has been resolved: vduse: check that offset is within bounds in getconfig This condition checks "len" but it does not check "offset" and that could result in an out of bounds read if "offset dev-configsize". The problem is that since both variables...

CVE-2024-32633

An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way...

CVE-2024-32633 Unsigned compared against 0

An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way...

CVE-2024-32633 Unsigned compared against 0

An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way...

CVE-2024-32633

CVE-2024-32633 describes a flaw where an unsigned value can never be negative, causing eMMC full-disk test evaluations to always yield the same result. Connected sources identify the Asrmicro ASR Series (ASR360x, ASR160x, ASR180x) as affected. The initial entry provides a CVSSv3.1 base score of 4...

PT-2024-24733

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned. Description The issue concerns an unsigned value that can never be negative, affecting the evaluation of the eMMC full disk test. Recommendations At the moment, there is no information about a...

CVE-2023-5215

A vulnerability CVE-2023-5215 affects libnbd where a server may reply with a block size larger than 2^63, violating the 64-bit unsigned size expectation in nbd_get_size() and potentially causing an application crash or other unintended behavior in NBD clients that mishandle the return value. Conn...

kernel: arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fw_level

An integer overflow exists in the linux kernel such that the value returned from acpifindlastcachelevel is then assigned to unsigned fwlevel, which will result in the number of cache leaves calculated incorrectly, resulting in damage to the confidentiality, integrity, and availability of the syst...

kernel: arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fw_level

An integer overflow exists in the linux kernel such that the value returned from acpifindlastcachelevel is then assigned to unsigned fwlevel, which will result in the number of cache leaves calculated incorrectly, resulting in damage to the confidentiality, integrity, and availability of the syst...

There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn't verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX leading to read_section_as_string() to an arithmetic overflow zero-sized allocation and further heap-based buffer overflow.

...

ALPINE-CVE-2017-13704

In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's 0xffffffffffffffff in 64 bit platforms, making dnsmasq crash...

DEBIAN-CVE-2017-13704

In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's 0xffffffffffffffff in 64 bit platforms, making dnsmasq crash...