Dark Reading

Hot New OS Flaw: Integer Overflow

This may come as a surprise: Integer overflow is now one of the biggest vulnerabilities reported in vendor operating systems. Buffer overflow maintains its top ranking as the most exploited security ...
eWeek

How to Defend Against Deadly Integer Overflow Attacks

eSpeaks host Corey Noles sits down with Qualcomm's Craig Tellalian to explore a workplace computing transformation: the rise of AI-ready PCs. Matt Hillary, VP of Security and CISO at Drata, details ...
Threat Post

ICU Project Overflow Vulnerabilities Patched

Buffer and integer overflow vulnerabilities have been patched in the ICU Project ICU4C library, used in hundreds of open source and enterprise software packages. Multitudes of software packages that ...
CSOonline

Twenty-year-old vulnerability in LZO finally patched

After twenty years, a vulnerability in Lempel-Ziv-Oberhumer (LZO), an extremely efficient compression algorithm, has finally been patched. The flaw, a subtle integer overflow, existed for as long as ...
GIGAZINE

Pointed out that there is a flaw in the ``CVE'' system that assigns IDs to vulnerabilities and manages them

When a vulnerability that becomes an information security flaw is discovered, it is given an identification ID called CVE (Common Vulnerabilities and Exposures), evaluated for severity, and listed.
ZDNet

X Font Server flaw hits Sun Solaris hard

Default installations of Sun's free Solaris operating system are sitting ducks for remote code execution attacks. According to an alert from iDefense, the flaw exists in the way Solaris implements the ...