Vulnerabilities > Incorrect Calculation of Buffer Size
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-27 | CVE-2021-46943 | Incorrect Calculation of Buffer Size vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: media: staging/intel-ipu3: Fix set_fmt error handling If there in an error during a set_fmt, do not overwrite the previous sizes with the invalid config. Without this patch, v4l2-compliance ends up allocating 4GiB of RAM and causing the following OOPs [ 38.662975] ipu3-imgu 0000:00:05.0: swiotlb buffer is full (sz: 4096 bytes) [ 38.662980] DMA: Out of SW-IOMMU space for 4096 bytes at device 0000:00:05.0 [ 38.663010] general protection fault: 0000 [#1] PREEMPT SMP | 7.8 |
2024-02-20 | CVE-2024-23606 | An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). | 9.8 |
2024-02-02 | CVE-2023-6387 | Incorrect Calculation of Buffer Size vulnerability in Silabs Gecko Software Development KIT 4.1.2/4.1.3/4.2.4 A potential buffer overflow exists in the Bluetooth LE HCI CPC sample application in the Gecko SDK which may result in a denial of service or remote code execution | 7.5 |
2024-01-31 | CVE-2023-6780 | Incorrect Calculation of Buffer Size vulnerability in multiple products An integer overflow was found in the __vsyslog_internal function of the glibc library. | 5.3 |
2023-11-08 | CVE-2023-5941 | Incorrect Calculation of Buffer Size vulnerability in Freebsd In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13.2-RELEASE-p5 the __sflush() stdio function in libc does not correctly update FILE objects' write space members for write-buffered streams when the write(2) system call returns an error. | 9.8 |
2023-10-15 | CVE-2023-45871 | Incorrect Calculation of Buffer Size vulnerability in Linux Kernel An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the Linux kernel before 6.5.3. | 7.5 |
2023-10-13 | CVE-2023-4257 | Incorrect Calculation of Buffer Size vulnerability in Zephyrproject Zephyr Unchecked user input length in /subsys/net/l2/wifi/wifi_shell.c can cause buffer overflows. | 9.8 |
2023-08-07 | CVE-2023-20798 | Incorrect Calculation of Buffer Size vulnerability in Google Android 12.0/13.0 In pda, there is a possible out of bounds read due to an incorrect calculation of buffer size. | 4.4 |
2023-07-11 | CVE-2023-36824 | Incorrect Calculation of Buffer Size vulnerability in multiple products Redis is an in-memory database that persists on disk. | 8.8 |
2023-06-07 | CVE-2023-30575 | Incorrect Calculation of Buffer Size vulnerability in Apache Guacamole Apache Guacamole 1.5.1 and older may incorrectly calculate the lengths of instruction elements sent during the Guacamole protocol handshake, potentially allowing an attacker to inject Guacamole instructions during the handshake through specially-crafted data. | 7.5 |