Vulnerabilities > Incorrect Calculation of Buffer Size

DATE CVE VULNERABILITY TITLE RISK
2024-08-21 CVE-2022-48889 Incorrect Calculation of Buffer Size vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sof-nau8825: fix module alias overflow The maximum name length for a platform_device_id entry is 20 characters including the trailing NUL byte.
local
low complexity
linux CWE-131
5.5
2024-02-27 CVE-2021-46943 Incorrect Calculation of Buffer Size vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: media: staging/intel-ipu3: Fix set_fmt error handling If there in an error during a set_fmt, do not overwrite the previous sizes with the invalid config. Without this patch, v4l2-compliance ends up allocating 4GiB of RAM and causing the following OOPs [ 38.662975] ipu3-imgu 0000:00:05.0: swiotlb buffer is full (sz: 4096 bytes) [ 38.662980] DMA: Out of SW-IOMMU space for 4096 bytes at device 0000:00:05.0 [ 38.663010] general protection fault: 0000 [#1] PREEMPT SMP
local
low complexity
linux CWE-131
7.8
2024-02-20 CVE-2024-23606 An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111).
network
low complexity
CWE-131
critical
9.8
2024-02-02 CVE-2023-6387 Incorrect Calculation of Buffer Size vulnerability in Silabs Gecko Software Development KIT 4.1.2/4.1.3/4.2.4
A potential buffer overflow exists in the Bluetooth LE HCI CPC sample application in the Gecko SDK which may result in a denial of service or remote code execution
high complexity
silabs CWE-131
7.5
2024-01-31 CVE-2023-6780 Incorrect Calculation of Buffer Size vulnerability in multiple products
An integer overflow was found in the __vsyslog_internal function of the glibc library.
network
low complexity
gnu fedoraproject CWE-131
5.3
2023-11-08 CVE-2023-5941 Incorrect Calculation of Buffer Size vulnerability in Freebsd
In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13.2-RELEASE-p5 the __sflush() stdio function in libc does not correctly update FILE objects' write space members for write-buffered streams when the write(2) system call returns an error.
network
low complexity
freebsd CWE-131
critical
9.8
2023-10-15 CVE-2023-45871 Incorrect Calculation of Buffer Size vulnerability in multiple products
An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the Linux kernel before 6.5.3.
high complexity
linux debian CWE-131
7.5
2023-10-13 CVE-2023-4257 Incorrect Calculation of Buffer Size vulnerability in Zephyrproject Zephyr
Unchecked user input length in /subsys/net/l2/wifi/wifi_shell.c can cause buffer overflows.
network
low complexity
zephyrproject CWE-131
critical
9.8
2023-08-07 CVE-2023-20798 Incorrect Calculation of Buffer Size vulnerability in Google Android 12.0/13.0
In pda, there is a possible out of bounds read due to an incorrect calculation of buffer size.
local
low complexity
google CWE-131
4.4
2023-07-11 CVE-2023-36824 Incorrect Calculation of Buffer Size vulnerability in multiple products
Redis is an in-memory database that persists on disk.
network
low complexity
redis fedoraproject CWE-131
8.8