PT-2026-3527

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-13 Description ImageMagick is software used for editing and manipulating digital images. Versions before 7.1.2-13 are susceptible to a stack overflow due to infinite recursion within the MSL Magick Scripting...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989063)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989063 advisory. In the Linux kernel, the following vulnerability has been resolved: usbnet: fix memory leak in error case usbnetwritecmdasync mixed up which buffers need to be freed...

nvme-fabrics: use reserved tag for reg read/write command

...

CVE-2024-41082 nvme-fabrics: use reserved tag for reg read/write command

In the Linux kernel, the following vulnerability has been resolved: nvme-fabrics: use reserved tag for reg read/write command In some scenarios, if too many commands are issued by nvme command in the same time by user tasks, this may exhaust all tags of adminq. If a reset nvme reset or IO timeout...

SUSE CVE-2023-52742

In the Linux kernel, the following vulnerability has been resolved: net: USB: Fix wrong-direction WARNING in plusb.c The syzbot fuzzer detected a bug in the plusb network driver: A zero-length control-OUT transfer was treated as a read instead of a write. In modern kernels this error provokes a...

UBUNTU-CVE-2021-47449

In the Linux kernel, the following vulnerability has been resolved: ice: fix locking for Tx timestamp tracking flush Commit 4dd0d5c33c3e "ice: add lock around Tx timestamp tracker flush" added a lock around the Tx timestamp tracker flow which is used to cleanup any left over SKBs and prepare for...

UBUNTU-CVE-2023-52742

In the Linux kernel, the following vulnerability has been resolved: net: USB: Fix wrong-direction WARNING in plusb.c The syzbot fuzzer detected a bug in the plusb network driver: A zero-length control-OUT transfer was treated as a read instead of a write. In modern kernels this error provokes a...

CVE-2023-0811

Omron CJ1M unit v4.0 and prior has improper access controls on the memory region where the UM password is stored. If an adversary issues a PROGRAM AREA WRITE command to a specific memory region, they could overwrite the password. This may lead to disabling UM protections or setting a non-ASCII...

PT-2023-16540 · Omron · Omron Cj1M

Name of the Vulnerable Software and Affected Versions: Omron CJ1M unit versions 4.0 and prior Description: The issue is related to improper access controls on the memory region where the UM password is stored. An adversary can issue a PROGRAM AREA WRITE command to a specific memory region,...

GSD-2022-1007218 soundwire: cadence: Don't overwrite msg->buf during write commands

soundwire: cadence: Don't overwrite msg-buf during write commands This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.150 by commit...

UBUNTU-CVE-2019-18389

A heap-based buffer overflow in the vrendrenderertransferwriteiov function in vrendrenderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-host escape and code execution, via VIRGLCCMDRESOURCEINLINEWRITE commands...

CiscoKits 1.0 TFTP Server DoS (write command)

No description provided by source. !/usr/bin/python Title : CiscoKits CCNA TFTP Server Denial Of Service Vulnerability Author : Prabhu S Angadi from SecPod Technologies www.secpod.com Vendor : http://www.certificationkits.com/cisco-ccna-tftp-server/ Advisory : http://secpod.org/blog/?p=271...

CiscoKits 1.0 - TFTP Server Write Command Denial of Service

CiscoKits 1.0 - TFTP Server Write Command Denial of Service !/usr/bin/python Title : CiscoKits CCNA TFTP Server Denial Of Service Vulnerability Author : Prabhu S Angadi from SecPod Technologies www.secpod.com Vendor : http://www.certificationkits.com/cisco-ccna-tftp-server/ Advisory :...

Solaris 2.6 / 2.7 /usr/bin/write Local Overflow Exploit

Exploit for solaris platform in category local exploits ======================================================= Solaris 2.6 / 2.7 /usr/bin/write Local Overflow Exploit ======================================================= include include / /usr/bin/write overflow proof of conecpt. Tested on...

solaris.write.bof.txt

Date: Mon, 8 Mar 1999 15:30:36 +0900 From: [email protected] To: [email protected] Subject: Solaris "/usr/bin/write" bug This is my first post to BugTraq If this is old, I'm sorry. when playing around with "/usr/bin/write" on Solaris 2.6 x86 , I found something interesting. It's buffer overfl...