CVE-2025-38182

CVE-2025-38182 affects the Linux kernel ublk (userspace block driver). The connected advisories confirm the issue is fixed in the kernel by sanitizing arguments from userspace when adding a device and by sanity-checking the queue depth/number of queues obtained from userspace. Root cause: inadequ...

Heap out of bounds read in `RaggedCross`

Impact An attacker can force accesses outside the bounds of heap allocated arrays by passing in invalid tensor values to tf.rawops.RaggedCross: python import tensorflow as tf raggedvalues = raggedrowsplits = sparseindices = sparsevalues = sparseshape = denseinputselem = tf.constant, shape=92, 0,...

(Pwn2Own) Huawei App Market JavaScript Bridge Privilege Escalation Vulnerability

This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Huawei App Market. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

Apple OS X CoreStorage Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within CoreStorage. The issue...

Solaris 10 (sparc) : 152649-02 : dtappgather Arbitrary Directory Creation Local Privilege Escalation (EXTREMEPARR)

The remote Solaris host is missing patch number 152649-02. It is, therefore, affected by a local privilege escalation vulnerability in the dtappgather binary due to improper handling of user-supplied arguments. A local attacker can exploit this, via a specially crafted command, to manipulate file...

Apple OS X AppleIntelBDWGraphics Memory Corruption Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

lcdproc lcdd 0.x/4.x Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/10085/info LCDproc Server LCDd has been reported to be prone to multiple remote vulnerabilities. The first issue is reported to exist in the parseallclientmessages function of parse.c, and is due to a lack of sufficient...

Java Applet ProviderSkeleton Class Insecure Invoke Method (CVE-2013-2460)

A vulnerabilty has been reported in the ProviderSkeleton class which allows to call arbitrary static methods with user supplied arguments...

Novell PlateSpin Orchestrate Graph Rendering Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Platespin Orchestrate. Authentication is not required to exploit this vulnerability. The specific flaw exists within how the application utilizes a bundled component for rendering graphs. Th...

Visagesoft eXPert PDF EditorX (VSPDFEditorX.ocx) Insecure Method

No description provided by source. VISAGESOFT eXPert PDF EditorX VSPDFEditorX.ocx INSECURE METHOD SITE: http://www.visagesoft.com This was written for educational purpose. Use it at your own risk. Author will be not responsible for any damage. Author: Marco Torti mail: marcotorti2atyahoodotcom...

Jan Hubicka Koules 1.4 - 'Svgalib' Local Buffer Overflow

/ source: https://www.securityfocus.com/bid/1967/info Koules is an original, arcade-style game authored by Jan Hubicka. The version using svgalib is usually installed setuid root so that it may access video hardware when being run at the console by regular users. This version contains a buffer...

Oracle 8.x - cmctl Buffer Overflow

Oracle 8.x - cmctl Buffer Overflow / source: https://www.securityfocus.com/bid/1968/info cmctl is the Connection Control Manager, part of the Oracle 8i installation. A vulnerability exists that can allow elevation of privileges. The problem occurs in the way cmctl handles the user-supplied comman...