Lucene search
+L

21 matches found

cve
cve
added 2026/06/24 4:29 p.m.28 views

CVE-2026-53016

Summary of CVE-2026-53016 (Linux kernel): The vulnerability exists in the crypto CCP driver when handling AF_ALG rfc3686-ctr-aes-ccp requests. The function ccp_aes_complete() restores AES_BLOCK_SIZE bytes into the caller’s IV buffer, but RFC3686 skciphers expose an 8-byte IV, leading to a buffer ...

7.8CVSS5.7AI score0.00137EPSS
Exploits0References13Affected Software1
vulnrichment
vulnrichment
added 2026/03/02 7:40 p.m.4 views

CVE-2026-27631 Exiv2: Uncaught exception - cannot create std::vector larger than max_size()

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an uncaught exception was found in Exiv2. The vulnerability is in the preview component, which is only triggered when running Exiv2 with an extra...

6.9CVSS5.8AI score0.00255EPSS
Exploits0References4
susecve
susecve
added 2025/12/09 12:24 a.m.8 views

SUSE CVE-2025-40291

In the Linux kernel, the following vulnerability has been resolved: iouring: fix regbuf vector size truncation There is a report of ioestimatebvecsize truncating the calculated number of segments that leads to corruption issues. Check it doesn't overflow "int"s used later. Rough but simple, can b...

6.4AI score0.00162EPSS
Exploits0References3
debiancve
debiancve
added 2025/12/08 12:46 a.m.36 views

CVE-2025-40291

In the Linux kernel, the following vulnerability has been resolved: iouring: fix regbuf vector size truncation There is a report of ioestimatebvecsize truncating the calculated number of segments that leads to corruption issues. Check it doesn't overflow "int"s used later. Rough but simple, can b...

5.4AI score0.00162EPSS
Exploits0
ptsecurity
ptsecurity
added 2025/12/08 12:0 a.m.5 views

PT-2025-49424

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to io uring, specifically a truncation issue within the io estimate bvec size function. This truncation can lead to corruption issues. The probl...

5.4AI score0.00519EPSS
Exploits4References387
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-0982

Malware in sbrugna...

5CVSS6.4AI score0.01707EPSS
Exploits0References8
nessus
nessus
added 2025/08/11 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-46684

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: binfmtelffdpic: fix AUXV size calculation when ELFHWCAP2 is defined createelffdpictables doe...

5.5CVSS6.1AI score0.00199EPSS
Exploits0References2
osv
osv
added 2024/09/13 6:15 a.m.4 views

DEBIAN-CVE-2024-46684

In the Linux kernel, the following vulnerability has been resolved: binfmtelffdpic: fix AUXV size calculation when ELFHWCAP2 is defined createelffdpictables does not correctly account the space for the AUX vector when an architecture has ELFHWCAP2 defined. Prior to the commit 10e29251be0e...

5.5CVSS5.8AI score0.00199EPSS
Exploits0References1
pypa
pypa
added 2022/10/28 9:15 p.m.15 views

PYSEC-2022-43187

wasm-interp v1.0.29 was discovered to contain a heap overflow via the component std::vector::size at /bits/stlvector.h...

7.8CVSS7.1AI score0.0032EPSS
Exploits1References1Affected Software1
osv
osv
added 2022/10/28 9:15 p.m.5 views

DEBIAN-CVE-2022-43281

wasm-interp v1.0.29 was discovered to contain a heap overflow via the component std::vector::size at /bits/stlvector.h...

7.8CVSS7.4AI score0.0032EPSS
Exploits1References1
osv
osv
added 2022/10/28 9:15 p.m.6 views

PYSEC-2022-43187

wasm-interp v1.0.29 was discovered to contain a heap overflow via the component std::vector::size at /bits/stlvector.h...

7.8CVSS5.8AI score0.0032EPSS
Exploits1References1
osv
osv
added 2022/10/28 9:15 p.m.5 views

UBUNTU-CVE-2022-43281

wasm-interp v1.0.29 was discovered to contain a heap overflow via the component std::vector::size at /bits/stlvector.h...

7.8CVSS5.8AI score0.0032EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2022/10/28 12:0 a.m.7 views

CVE-2022-43281

wasm-interp v1.0.29 was discovered to contain a heap overflow via the component std::vector::size at /bits/stlvector.h...

7.9AI score0.0032EPSS
Exploits1References1
attackerkb
attackerkb
added 2022/08/16 9:15 p.m.4 views

CVE-2022-36153

tifig v0.2.2 was discovered to contain a segmentation violation via std::vector ::size const at /bits/stlvector.h...

5.5CVSS6.1AI score0.00287EPSS
Exploits1References2
cnnvd
cnnvd
added 2022/08/16 12:0 a.m.6 views

tifig 代码问题漏洞

tifig is a Monostream open source fast HEIF image converter for thumbnails. tifig v0.2.2 version of the code problem vulnerability , the vulnerability stems from its /bits/stlvector.h component in the std::vector ::size function has a memory segment exception...

5.5CVSS5.8AI score0.00287EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2022/08/16 12:0 a.m.5 views

PT-2022-23233 · Tifig · Tifig

Name of the Vulnerable Software and Affected Versions: tifig version 0.2.2 Description: A segmentation violation was discovered in tifig via the size function of std::vector. Recommendations: For tifig version 0.2.2, at the moment, there is no information about a newer version that contains a fix...

5.5CVSS5.3AI score0.00287EPSS
Exploits1References3
rustsec
rustsec
added 2021/02/17 12:0 p.m.32 views

misc::vec_with_size() can drop uninitialized memory if clone panics

misc::vecwithsize creates a vector of the provided size and immediately calls vec.setlensize on it, initially filling it with uninitialized memory. It then inserts elements using veci = value.clone. If the value.clone call panics, uninitialized items in the vector will be dropped leading to...

9.8CVSS2.5AI score0.01363EPSS
Exploits1
nessus
nessus
added 2017/09/05 12:0 a.m.21 views

Ubuntu 14.04 LTS : FontForge vulnerabilities (USN-3409-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3409-1 advisory. It was discovered that FontForge was vulnerable to a heap-based buffer over-read. A remote attacker could use a crafted file to DoS or execute arbitrary...

7.8CVSS7.8AI score0.0144EPSS
Exploits0References9
ubuntu
ubuntu
added 2017/09/04 3:44 p.m.53 views

USN-3409-1: FontForge vulnerabilities

It was discovered that FontForge was vulnerable to a heap-based buffer over-read. A remote attacker could use a crafted file to DoS or execute arbitrary code. CVE-2017-11568, CVE-2017-11569, CVE-2017-11572 It was discovered that FontForge was vulnerable to a stack-based buffer overflow. A remote...

7.8CVSS7.2AI score0.0144EPSS
Exploits0
osv
osv
added 2017/09/04 3:44 p.m.10 views

USN-3409-1 fontforge vulnerabilities

It was discovered that FontForge was vulnerable to a heap-based buffer over-read. A remote attacker could use a crafted file to DoS or execute arbitrary code. CVE-2017-11568, CVE-2017-11569, CVE-2017-11572 It was discovered that FontForge was vulnerable to a stack-based buffer overflow. A remote...

7.8CVSS7.1AI score0.0144EPSS
Exploits0References9
Rows per page
Query Builder