UBUNTU-CVE-2021-47040

In the Linux kernel, the following vulnerability has been resolved: iouring: fix overflows checks in provide buffers Colin reported before possible overflow and sign extension problems in ioprovidebuffersprep. As Linus pointed out previous attempt did nothing useful, see d81269fecb8ce "iouring: f...

The vulnerability of the `apply_sao_internal<unsigned short>` function (sao.cc) in the h.265 Libde265 codec implementation allows a attacker to cause a service failure.

The vulnerability of the applysaointernal function sao.cc in the h.265 Libde265 implementation is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

GHSA-HX5Q-V6PJ-533R SAML authentication bypass due to missing validation on unsigned SAML messages

Impact When SAML is used as the authentication mechanism, Central Dogma accepts unsigned SAML messages assertions, logout requests, etc. as they are, rather than rejecting them by default. As a result, an attacker can forge a SAML message to authenticate themselves, despite the fact that such an...

GHSA-4M6J-23P2-8C54 Armeria SAML authentication bypass due to missing validation on unsigned SAML messages

Impact The SAML implementation provided by armeria-saml currently accepts unsigned SAML messages assertions, logout requests, etc. as they are, rather than rejecting them by default. As a result, an attacker can forge a SAML message to authenticate themselves, despite the fact that such an unsign...

PT-2024-40337 · Armeria +1 · Armeria +1

Name of the Vulnerable Software and Affected Versions: Central Dogma versions prior to 0.64.3 Description: The issue arises when SAML is used for authentication, as Central Dogma accepts unsigned SAML messages by default, instead of rejecting them. This allows an attacker to forge SAML messages f...

CVE-2024-1633 FIP Header Integer Overflow

During the secure boot, bl2 the second stage of the bootloader loops over images defined in the table “bl2memparamsdescs”. For each image, the bl2 reads the image length and destination from the image’s certificate. Because of the way of reading from the image, which base on 32-bit unsigned integ...

Buffer Overflow

libzephyr.so is vulnerable to Buffer overflow. The vulnerability is due to signed to unsigned conversion when passing a negative size to memcpy, which can lead to buffer overflow in the esp32ipmsend function...

CVE-2023-6249

Signed to unsigned conversion esp32ipmsend...

Design/Logic Flaw

Signed to unsigned conversion esp32ipmsend...

CVE-2023-6249 ipm: signed to unsigned conversion problem in esp32_ipm_send

Signed to unsigned conversion esp32ipmsend...

CVE-2023-6249

CVE-2023-6249 affects the Zephyr RTOS component esp32_ipm_send. The root cause is a signed-to-unsigned conversion that can cause a buffer overflow in esp32_ipm_send (as described by Veracode), elevating risk for affected builds. Public documents describe a buffer overflow condition but do not spe...

CVE-2023-6249 ipm: signed to unsigned conversion problem in esp32_ipm_send

Signed to unsigned conversion esp32ipmsend...

zephyr Security Breach

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in zephyr 3.5 and earlier versions, which stems from a signed to unsigned conversion issue in esp32ipmsend...

PT-2024-14913 · Espressif · Esp32 Ipm Send

Name of the Vulnerable Software and Affected Versions: esp32 ipm send affected versions not specified Description: The issue involves a signed to unsigned conversion in the esp32 ipm send function. This could potentially lead to unexpected behavior or errors. No information is provided about the...

The vulnerability of the put_qpel_fallback() function in the h.265 Libde265 implementation allows a perpetrator to trigger a service failure.

The vulnerability of the putqpelfallback function in the h.265 Libde265 implementation is related to the issue where the operation’s output goes beyond the buffer in memory when processing the unsigned short data type. Exploiting this vulnerability can allow a malicious actor to cause service...

CVE-2023-28063

Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service...

Privilege escalation

Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service...

CVE-2023-28063

Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service...

CVE-2023-28063

CVE-2023-28063 affects Dell BIOS. Root cause: a signed-to-unsigned conversion error. Local authenticated admin can exploit to cause a denial of service. Dell-DSA-2023-176 and Dell KB 000214780 document the fix; Nessus plugin notes a patch is available. If exploited, impact is DoS on the affected ...

CVE-2023-28063

Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service...