ROOT-OS-UBUNTU-2404-CVE-2025-22071 CVE-2025-22071 in rootio-linux - Patched by Root

Root has patched CVE-2025-22071 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

Azure Linux 3.0 Security Update: kernel (CVE-2025-22071)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22071 advisory. - In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak in spufscreatecontext...

CVE-2025-22071 affecting package kernel for versions less than 6.6.92.2-1

CVE-2025-22071 affecting package kernel for versions less than 6.6.92.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-22071 spufs: fix a leak in spufs_create_context()

In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak in spufscreatecontext Leak fixes back in 2008 missed one case - if we are trying to set affinity and spufsmkdir fails, we need to drop the reference to neighbor...

CVE-2025-22071

CVE-2025-22071 concerns the Linux kernel spufs subsystem. The issue is a leak in spufs_create_context() that occurs when setting CPU affinity and spufs_mkdir() fails, requiring the code to drop the reference to the neighbor. The problem was fixed by this leak remediation, with historical notes th...

CVE-2025-22071

In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak in spufscreatecontext Leak fixes back in 2008 missed one case - if we are trying to set affinity and spufsmkdir fails, we need to drop the reference to neighbor...

CVE-2022-22071

Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...

CVE-2023-51585

Voltronic Power ViewPower USBCommEx shutdown Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Voltronic Power ViewPower Pro. User interaction is required to exploit this vulnerability in that a...

CVE-2023-51585 Voltronic Power ViewPower USBCommEx shutdown Command Injection Remote Code Execution Vulnerability

Voltronic Power ViewPower USBCommEx shutdown Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Voltronic Power ViewPower Pro. User interaction is required to exploit this vulnerability in that a...

CVE-2023-51585

CVE-2023-51585 affects Voltronic Power ViewPower Pro (USBCommEx shutdown) where the shutdown method uses a user-supplied string in a system call without proper validation, enabling remote code execution in the context of the current user. Exploitation requires administrator-triggered shutdown and...

CVE-2023-51585 Voltronic Power ViewPower USBCommEx shutdown Command Injection Remote Code Execution Vulnerability

Voltronic Power ViewPower USBCommEx shutdown Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Voltronic Power ViewPower Pro. User interaction is required to exploit this vulnerability in that a...

Oracle Database Server (October 2023 CPU)

The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2023 CPU advisory. - Vulnerability in the Oracle Spatial and Graph cURL component of Oracle Database Server. Supported versions that are affected are 19.3-19.2...

CVE-2023-22071

creationtimestamp| type| source ---|---|--- 2023-10-18 02:44:56+00:00| seen| https://t.me/cibsecurity/72475...

CVE-2023-22071

...

CVE-2023-22071

...

CVE-2023-22071

CVE-2023-22071 affects Oracle Database Server, specifically the PL/SQL component. Affected versions are 19.3–19.20 and 21.3–21.11. The vulnerability allows a high-privileged attacker with Create Session and Execute on sys.utl_http and network access via Oracle Net to compromise PL/SQL. Exploitati...

CVE-2022-22071

creationtimestamp| type| source ---|---|--- 2023-10-04 10:12:19+00:00| exploited| https://t.me/kasperskyb2b/917 2023-10-04 13:13:09+00:00| seen| https://t.me/truesecator/4924 2023-12-05 18:10:02+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-12-24 20:35:47+00:00| seen|...

Qualcomm Releases Patch for 3 new Zero-Days Under Active Exploitation

Chipmaker Qualcomm has released security updates to address 17 vulnerabilities in various components, while warning that three other zero-days have come under active exploitation. Of the 17 flaws, three are rated Critical, 13 are rated High, and one is rated Medium in severity. "There are...

VulnCheck KEV: CVE-2022-22071

Multiple Qualcomm chipsets contain a use-after-free vulnerability when process shell memory is freed using IOCTL munmap call and process initialization is in progress...

CVE-2022-22071

Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...