Tag

Integer-Underflow

4 briefs RSS

CVE-2026-43492 Integer Underflow in mpi_read_raw_from_sgl()

CVE-2026-43492 is an integer underflow vulnerability in the mpi_read_raw_from_sgl function within the lib/crypto component that could lead to unexpected behavior or denial-of-service.

integer underflow denial of service cryptographic library CVE-2026-43492

1r 1c May 20, 2026

medium advisory

osrg GoBGP Integer Underflow Vulnerability

2 rules 1 TTP 1 CVE

osrg GoBGP up to version 4.3.0 is vulnerable to an integer underflow in the parseRibEntry function, potentially allowing a remote attacker to cause a denial of service or other unspecified impacts; version 4.4.0 addresses this issue.

GoBGP cve vulnerability integer underflow bgp

2r 1t 1c May 4, 2026

high advisory

CVE-2026-5778 Integer Underflow in ChaCha Decryption Leads to Out-of-Bounds Access

2 rules 1 CVE

CVE-2026-5778 is an integer underflow vulnerability in the ChaCha decrypt path of an unspecified Microsoft product, leading to an out-of-bounds access issue.

integer-underflow memory-corruption cve

2r 1c Apr 30, 2026

high advisory

strongSwan EAP-TTLS AVP Integer Underflow Vulnerability (CVE-2026-25075)

2 rules 1 TTP

An integer underflow vulnerability in strongSwan's EAP-TTLS AVP parser allows unauthenticated remote attackers to cause a denial of service by sending crafted AVP data with invalid length fields during IKEv2 authentication, leading to excessive memory allocation or a NULL pointer dereference.

denial-of-service integer-underflow strongSwan CVE-2026-25075

2r 1t Mar 24, 2026