Unity Linux 20.1050e Security Update: kernel (UTSA-2026-013412)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013412 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: add validation for ringlen param The ringlen parameter provided by the virtual function VF ...

Linux Distros Unpatched Vulnerability : CVE-2025-39973

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - i40e: add validation for ringlen param The ringlen parameter provided by the virtual function VF is assigned directly to the hardware memory context HMC without...

EUVD-2019-2402

Malware in sbrugna...

The Cost of Restaking Vs. Proof-Of-Stake

We compare the efficiency of restaking and Proof-of-Stake PoS protocols in terms of stake requirements. First, we consider the sufficient condition for the restaking graph to be secure. We show that the condition implies that it is always possible to transform such a restaking graph into secure P...

New Capacity Bounds for PIR on Graph and Multigraph-Based Replicated Storage

In this paper, we study the problem of private information retrieval PIR in both graph-based and multigraph-based replication systems, where each file is stored on exactly two servers, and any pair of servers shares at most $r$ files. We derive upper bounds on the PIR capacity for such systems an...

SUSE CVE-2024-26927

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Add some bounds checking to firmware data Smatch complains about "head-fullsize - head-headersize" can underflow. To some extent, we're always going to have to trust the firmware a bit. However, it's easy enough to add...

CVE-2024-26927

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Add some bounds checking to firmware data Smatch complains about "head-fullsize - head-headersize" can underflow. To some extent, we're always going to have to trust the firmware a bit. However, it's easy enough to add...

CVE-2024-26927 ASoC: SOF: Add some bounds checking to firmware data

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Add some bounds checking to firmware data Smatch complains about "head-fullsize - head-headersize" can underflow. To some extent, we're always going to have to trust the firmware a bit. However, it's easy enough to add...

Out-of-bounds Write

GTKWave 3.3.115 is vulnerable to Out-of-bounds Write. The vulnerability is due to not checking upper bounds while looping over lt-numrealfacs in the VZT vztrdprocessblock autosort functionality. A specially crafted .vzt file can lead to arbitrary code execution when opened by a victim...

PYSEC-2022-222

The Security Team noticed that the termination condition of the for loop in the readExternal method is a controllable variable, which, if tampered with, may lead to CPU exhaustion. As a fix, we added an upper bound and termination condition in the read and write logic. We classify it as a...

Yieldy._totalSupply has different upper bounds.

Lines of code Vulnerability details Impact Yieldy.totalSupply has different upper bounds. Yieldy.mint will revert when totalSupply is exactly same as MAXSUPPLY. Proof of Concept From L91-L98, we can see totalSupply can be same as MAXSUPPLY and I think "totalSupply = MAXSUPPLY" is reasonable also...

Improper Upper Bound Definition on the Fee

Handle Jujic Vulnerability details Impact The rJoePerSec does not have any upper or lower bounds. Values that are too large will lead to reversions in several critical functions. Proof of Concept function updateEmissionRateuint256 rJoePerSec external onlyOwner updatePool; rJoePerSec = rJoePerSec;...

Oracle Linux 5 : lcms (ELSA-2009-0339)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-0339 advisory. - CVE-2009-0581 LittleCms memory leak - CVE-2009-0723 LittleCms integer overflow - CVE-2009-0733 LittleCms lack of upper-bounds check on sizes Tenable...

openSUSE Security Update : ghostscript-devel (ghostscript-devel-592)

Integer overflows and missing upper bounds checks in Ghostscript's ICC library potentially allowed attackers to crash Ghostscript or even cause execution of arbitrary code via specially crafted PS or PDF files CVE-2009-0583, CVE-2009-0584. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

openSUSE Security Update : ghostscript-devel (ghostscript-devel-592)

Integer overflows and missing upper bounds checks in Ghostscript's ICC library potentially allowed attackers to crash Ghostscript or even cause execution of arbitrary code via specially crafted PS or PDF files CVE-2009-0583, CVE-2009-0584. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Fedora 10 : argyllcms-1.0.3-4.fc10 (2009-3435)

Multiple integer overflows and multiple insufficient upper-bounds checks on certain variable sizes were originally discovered in the Ghostscript's International Color Consortium Format Library icclib. It was found, the original patch, addressing this issue was incomplete. Note that Tenable Networ...

Fedora 10 : ghostscript-8.63-5.fc10 (2009-2885)

Security update for integer overflows CVE-2009-0583 and upper bounds checks CVE-2009-0584 in the ICC profile handling. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and form...

Fedora Core 9 FEDORA-2009-3710 (ghostscript)

The remote host is missing an update to ghostscript announced via advisory FEDORA-2009-3710. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

Fedora Core 10 FEDORA-2009-3435 (argyllcms)

The remote host is missing an update to argyllcms announced via advisory FEDORA-2009-3435. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

Fedora Core 10 FEDORA-2009-3435 (argyllcms)

The remote host is missing an update to argyllcms announced via advisory FEDORA-2009-3435. OpenVAS Vulnerability Test $Id: fcore20093435.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3435 argyllcms Authors: Thomas Reinke Copyright: Copyright c 200...