CVE-2022-49857

In the Linux kernel, the following vulnerability has been resolved: net: marvell: prestera: fix memory leak in presterarxtxswitchinit When presterasdmaswitchinit failed, the memory pointed to by sw-rxtx isn't released. Fix it. Only be compiled, not be tested...

CVE-2022-49841

In the Linux kernel, the following vulnerability has been resolved: serial: imx: Add missing .thawnoirq hook The following warning is seen with non-console UART instance when system hibernates. 37.371969 ------------ cut here ------------ 37.376599 uart3rootclk already disabled 37.380810 WARNING:...

CVE-2025-37771

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINTMAX/8, division by zero is possible. Found by Linux Verification Center linuxtesting.org with SVACE...

CVE-2025-47153

creationtimestamp| type| source ---|---|--- 2025-05-01 07:14:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14243 2025-05-01 09:55:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo426cftvc22 2025-05-01 10:39:04+00:00| seen|...

CVE-2025-27131

creationtimestamp| type| source ---|---|--- 2025-04-30 21:40:27+00:00| seen| https://bsky.app/profile/lbtoday1.bsky.social/post/3lo2r3z2qqo23 2025-06-08 15:07:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lr45dha7lb2r...

CVE-2025-4068

creationtimestamp| type| source ---|---|--- 2025-04-29 16:12:47+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13855 2025-04-29 19:20:28+00:00| seen| https://t.me/cvedetector/24013 2025-04-29 19:50:35+00:00| seen|...

Moderate: Red Hat Security Advisory: glibc security update

An update for glibc is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

CVE-2025-32986

NETSCOUT nGeniusONE before 6.4.0 b2350 has a Sensitive File Accessible Without Proper Authentication to an endpoint...

CVE-2025-46473 WordPress Social Counter plugin <= 2.0.5 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in Prisna Social Counter social-counter allows Object Injection.This issue affects Social Counter: from n/a through = 2.0.5...

WordPress Post in page for Elementor plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Post in page for Elementor versions = 1.0.1...

CVE-2025-32834

creationtimestamp| type| source ---|---|--- 2025-04-22 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-112-01...

CVE-2025-43961

In LibRaw before 0.21.4, metadata/tiff.cpp has an out-of-bounds read in the Fujifilm 0xf00c tag parser...

CVE-2025-32442 Fastify vulnerable to invalid content-type parsing, which could lead to validation bypass

Fastify is a fast and low overhead web framework, for Node.js. In versions 5.0.0 to 5.3.0 as well as version 4.29.0, applications that specify different validation strategies for different content types have a possibility to bypass validation by providing a slightly altered content type such as...

CVE-2025-38479

In the Linux kernel, the following vulnerability has been resolved: dmaengine: fsl-edma: free irq correctly in remove path Add fsledma-txirq/errirq check to avoid below warning because no errirq at i.MX9 platform. Otherwise there will be kernel dump: WARNING: CPU: 0 PID: 11 at...

CVE-2025-22774 WordPress CRUDLab Scroll to Top Plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRUDLab CRUDLab Scroll to Top crudlab-scroll-to-top allows Reflected XSS.This issue affects CRUDLab Scroll to Top: from n/a through = 1.0.1...

CVE-2024-58096

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: add srng-lock for ath11khalsrng in monitor mode ath11khalsrng should be used with srng-lock to protect srng data. For ath11kdprxmondestprocess and ath11kdpfullmonprocessrx, they use ath11khalsrng for many times but...

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

CVE-2025-32870

creationtimestamp| type| source ---|---|--- 2025-04-16 18:44:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmxaptals42v 2025-04-16 20:48:39+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114349606118111826 2025-04-16 21:54:57+00:00| seen|...

CVE-2025-23137 cpufreq/amd-pstate: Add missing NULL ptr check in amd_pstate_update

In the Linux kernel, the following vulnerability has been resolved: cpufreq/amd-pstate: Add missing NULL ptr check in amdpstateupdate Check if policy is NULL before dereferencing it in amdpstateupdate...

CVE-2025-22115

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block group refcount race in btrfscreatependingblockgroups Block group creation is done in two phases, which results in a slightly unintuitive property: a block group can be allocated/deallocated from after...