Astra Linux - уязвимость в linux-5.15

A flaw was discovered in the ksmbd component of the Linux kernel, a high-performance in-kernel SMB server. The specific flaw occurs during the handling of SMB2LOGOFF commands. The issue arises from the lack of proper validation of a pointer before accessing it. An attacker can exploit this...

CVE-2025-62609

MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a segmentation fault in mlx::core::loadgguf when loading malicious GGUF files. Untrusted pointer from external gguflib library is dereferenced without validation, causing application crash. This iss...

EUVD-2017-8970

Malware in sbrugna...

wasmtime_jit_debug Dumps Undefined Memory by `JitDumpFile`

The unsound function dumpcodeloadrecord uses fromrawparts to directly convert the pointer addr and len into a slice without any validation and that memory block would be dumped. Thus, the 'safe' function dumpcodeloadrecord is actually 'unsafe' since it requires the caller to guarantee that the ad...

PT-2024-31745 · Unknown · Trusted Firmware-M

Name of the Vulnerable Software and Affected Versions: Trusted Firmware-M versions through 2.1.0 Description: An issue was discovered where user-provided mailbox messages contain a pointer to a list of input arguments in vec and output arguments out vec that are never validated. Each argument lis...

Linaro Trusted Firmware-M 安全漏洞

Linaro Trusted Firmware-M Tf-M is a reference implementation of the Platform Security Architecture Psa IoT security framework from Linaro, UK. A security vulnerability exists in Linaro Trusted Firmware-M version 2.1.0, which stems from not validating user-supplied pointers to invec and outvec...

Motorola MTM5000 Security Vulnerability

The Motorola MTM5000 is a mobile radio from Motorola, USA. A security vulnerability in the Motorola MTM5000, which stems from a lack of pointer validation of parameters passed to the Trusted Execution Environment TEE module, can be exploited by an attacker to obtain secure supervised code executi...

CVE-2023-34312

In Tencent QQ through 9.7.8.29039 and TIM through 3.4.7.22084, QQProtect.exe and QQProtectEngine.dll do not validate pointers from inter-process communication, which leads to a write-what-where condition...

USN-5937-1 opusfile vulnerability

It was discovered that Opusfile was not properly validating pointer arguments in some of its functions, which could lead to a NULL pointer dereference. An attacker could possibly use this issue to cause a denial of service or have other unspecified impacts...

SUSE CVE-2017-17819

In Netwide Assembler NASM 2.14rc0, there is an illegal address access in the function findcc in asm/preproc.c that will cause a remote denial of service attack, because pointers associated with skipwhite calls are not validated...

Qualcomm WIN TZ FW Buffer Error Vulnerability

Qualcomm WIN TZ FW is a Qualcomm Incorporated USA support firmware for use on processors. The Qualcomm WIN TZ FW suffers from a buffer error vulnerability that stems from a lack of validation of pointer parameters passed to the Trustzone BSP, resulting in memory corruption. The following products...

Qualcomm WIN TZ FW Buffer Error Vulnerability

Qualcomm WIN TZ FW is a Qualcomm Incorporated USA support firmware for use on processors. The Qualcomm WIN TZ FW suffers from a buffer error vulnerability that stems from an information disclosure issue caused by not validating pointer parameters passed to the TZ BSP. The following products and...

Denial Of Service (DoS)

The Simple Protocol for Independent Computing Environments SPICE is vulnerable to Denial Of Service DoS. It was found that the libspice component of QEMU-KVM on the host did not validate all pointers provided from a guest system's QXL graphics card driver. A privileged guest user could use this...

CVE-2017-17819

In Netwide Assembler NASM 2.14rc0, there is an illegal address access in the function findcc in asm/preproc.c that will cause a remote denial of service attack, because pointers associated with skipwhite calls are not validated...

Netwide Assembler 'find_cc()' Function Illegal Address Access Vulnerability

Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A security vulnerability in the 'findcc' function in the asm/preproc.c file in NASM version 2.14rc0 stems from the program's failure to validate pointers associated with skipwhite calls. A remote...

UBUNTU-CVE-2017-17819

In Netwide Assembler NASM 2.14rc0, there is an illegal address access in the function findcc in asm/preproc.c that will cause a remote denial of service attack, because pointers associated with skipwhite calls are not validated...

CVE-2016-8806

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgDdiEscape ID 0x5000027 where a pointer passed from an user to the driver is used without...

Sysinternals Regmon 6.11 Local Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11042/info Regmon is reported prone to a local denial of service vulnerability. This issue presents itself because the application fails to handle exceptional conditions and references unvalidated pointers to kernel...

Sysinternals Regmon 6.11 - Local Denial of Service

Sysinternals Regmon 6.11 - Local Denial of Service // source: https://www.securityfocus.com/bid/11042/info Regmon is reported prone to a local denial of service vulnerability. This issue presents itself because the application fails to handle exceptional conditions and references unvalidated...

Sysinternals Regmon 6.11 - Local Denial of Service

// source: https://www.securityfocus.com/bid/11042/info Regmon is reported prone to a local denial of service vulnerability. This issue presents itself because the application fails to handle exceptional conditions and references unvalidated pointers to kernel functions. Successful exploitation m...