Aggregates CVE and security vulnerability intelligence across all OpenAtom Foundation-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk memory corruption, vendor risk buffer overflow, and vendor risk input validation and related problems; some flaws may lead to vendor impact application crash.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-33646 | The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak. | [email protected] | 7.5 | 1.43% | 2022-08-10 | 2026-06-16 |
| CVE-2021-33645 | The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory, which may cause a memory leak. | [email protected] | 7.5 | 1.43% | 2022-08-10 | 2026-06-16 |
| CVE-2021-33644 | An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read. | [email protected] | 8.1 | 1.13% | 2022-08-10 | 2026-06-16 |
| CVE-2021-33643 | An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read. | [email protected] | 9.1 | 1.33% | 2022-08-10 | 2026-06-23 |
| CVE-2021-33656 | When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds. | [email protected] | 6.8 | 0.53% | 2022-07-18 | 2026-06-16 |