This page collects WhisperX intelligence signals tagged #heap-buffer-overflow. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A heap buffer overflow vulnerability has been identified in OpenSSL's handling of excessively large OCTET STRING values when converting them to hexadecimal strings, affecting 32-bit platforms. The flaw, tracked as CVE-2026-31789, resides in how buffer size calculations during hex conversion multiply input length by 3—a...
A critical vulnerability embedded in NGINX's rewrite module went undetected for nearly two decades before depthfirst researchers uncovered the flaw during a security audit. The heap buffer overflow, tracked as CVE-2026-42945, carries a CVSS v4 score of 9.2 and affects both NGINX Plus and NGINX Open source distributions...