integer overflow

  1. AA21-229A: BadAlloc Vulnerability Affecting BlackBerry QNX RTOS

    Original release date: August 17, 2021 Summary On August 17, 2021, BlackBerry publicly disclosed that its QNX Real Time Operating System (RTOS) is affected by a Link Removed vulnerability—CVE-2021-22156. BadAlloc is a collection of vulnerabilities affecting multiple RTOSs and supporting...
  2. Vulnerability hunting with Semmle QL: DOM XSS

    In two previous blog posts ( part 1 and part 2), we talked about using Semmle QL in C and C++ codebases to find vulnerabilities such as integer overflow, path traversal, and those leading to memory corruption. In this post, we will explore applying Semmle QL to web security by hunting for one of...
  3. Microsoft Security Advisory (2028859): Vulnerability in Canonical Display Driver Could Allow Remote

    Revision Note: V2.0 (July 13, 2010): Advisory updated to reflect publication of security bulletin. Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-043 to address this issue. For more information about this issue...
  4. Microsoft Security Advisory (2028859): Vulnerability in Canonical Display Driver Could Allow Remote

    Revision Note: V2.0 (July 13, 2010): Advisory updated to reflect publication of security bulletin.Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-043 to address this issue. For more information about this issue, including...
  5. Microsoft Security Advisory (2028859): Vulnerability in Canonical Display Driver Could Allow Remote

    Revision Note: V2.0 (July 13, 2010): Advisory updated to reflect publication of security bulletin.Summary: Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-043 to address this issue. For more information about this issue, including...
  6. Microsoft Security Advisory (2028859): Vulnerability in Canonical Display Driver Could Allow Remote

    Revision Note: V1.0 (May 18, 2010): Advisory published. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-043 to address this issue. For more information about this issue, including download links for an available security...