ROOT-OS-UBUNTU-2204-CVE-2025-38445 CVE-2025-38445 in rootio-linux - Patched by Root

Root has patched CVE-2025-38445 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

ROOT-OS-UBUNTU-2404-CVE-2025-38445 CVE-2025-38445 in rootio-linux - Patched by Root

Root has patched CVE-2025-38445 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

CVE-2025-38445 affecting package kernel for versions less than 5.15.200.1-1

CVE-2025-38445 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-38445 affecting package kernel for versions less than 6.6.104.2-1

CVE-2025-38445 affecting package kernel for versions less than 6.6.104.2-1. An upgraded version of the package is available that resolves this issue...

MAL-2025-38445 Malicious code in violin-common (npm)

The package violin-common was found to contain malicious code...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: tap: NULL pointer derefence in devparseheaderprotocol when skb-dev is null CVE-2022-50073 In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix skb refcnt race after locking...

CVE-2025-38445

CVE-2025-38445 covers a Linux kernel issue in md/raid1 where raid1_reshape allocated a mempool on the stack and assigned it to conf->r1bio_pool, causing conf->r1bio_pool.wait.head to reference a stack address. Subsequent access in raid1_read_request/raid1_write_request paths could trigger a...

CVE-2025-38445

In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix stack memory use after return in raid1reshape In the raid1reshape function, newpool is allocated on the stack and assigned to conf-r1biopool. This results in conf-r1biopool.wait.head pointing to a stack address...

CVE-2021-38445

OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...

Joomla Real Estate Manager Component Error-Based SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Joomla Real Estate Manager Component Error-Based SQL Injection', 'Description' = %q This module exploits a SQL injection vulnerability in Joomla...

CVE-2023-38445

In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges...

CVE-2023-38445

In CVE-2023-38445, the vulnerable component is vowifiservice. The root cause is a missing permission check, which could allow local denial of service without additional privileges. The NVD entry assigns a CVSS‑3.1 base score of 5.5 (Local, Low attack complexity, privileges required: Low, impact: ...

CVE-2022-38445

creationtimestamp| type| source ---|---|--- 2022-10-15 00:29:17+00:00| seen| https://t.me/cibsecurity/51509...

CVE-2022-38445

Adobe Dimension versions 3.4.5 is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2022-38445

Adobe Dimension 3.4.5 is affected by a Use-After-Free vulnerability in SKP file parsing that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious SKP file) and is described as local with high impact on confidenti...

Adobe Dimension < 3.4.6 Multiple Vulnerabilities (APSB22-57)

The version of Adobe Dimension installed on the remote host is prior to 3.4.6. It is, therefore, affected by multiple vulnerabilities, including the following: - Two arbitrary code execution vulnerabilities caused by out-of-bounds reads. An unauthenticated, local attacker can exploit these to...

CVE-2021-38445

creationtimestamp| type| source ---|---|--- 2022-05-05 20:36:38+00:00| seen| https://t.me/cibsecurity/42005...

CVE-2021-38445

OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...

CVE-2021-38445

OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...

CVE-2021-38445 OCI OpenDDS Secure Improper Handling of Length Parameter Inconsistency

OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...