1272 matches found
CVE-2025-40232
In the Linux kernel, the following vulnerability has been resolved: rv: Fully convert enabledmonitors to use listhead as iterator The callbacks in enabledmonitorsseqops are inconsistent. Some treat the iterator as struct rvmonitor , while others treat the iterator as struct listhead . This causes...
Chromium: CVE-2025-13720 Bad cast in Loader
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
CVE-2025-40232 rv: Fully convert enabled_monitors to use list_head as iterator
In the Linux kernel, the following vulnerability has been resolved: rv: Fully convert enabledmonitors to use listhead as iterator The callbacks in enabledmonitorsseqops are inconsistent. Some treat the iterator as struct rvmonitor , while others treat the iterator as struct listhead . This causes...
PT-2025-49059
In the Linux kernel, the following vulnerability has been resolved: rv: Fully convert enabled monitors to use list head as iterator The callbacks in enabled monitors seq ops are inconsistent. Some treat the iterator as struct rv monitor , while others treat the iterator as struct list head . This...
CVE-2025-13720
Bad cast in Loader in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...
CVE-2025-13720
Bad cast in Loader in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...
CVE-2025-13720
Bad cast in Loader in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...
Google Chrome < 143.0.7499.40 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 143.0.7499.40. It is, therefore, affected by multiple vulnerabilities as referenced in the 202512stable-channel-update-for-desktop advisory. - Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499....
PT-2025-48766
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 143.0.7499.41 Description A flaw exists in the Loader component of Google Chrome that could allow a remote attacker who has already compromised the renderer process to potentially exploit heap corruption through...
chromium -- multiple security fixes
Chrome Releases reports: This update includes 13 security fixes: 456547591 High CVE-2025-13630: Type Confusion in V8. Reported by Shreyas Penkar @streypaws on 2025-10-31 448113221 High CVE-2025-13631: Inappropriate implementation in Google Updater. Reported by Jota Domingos on 2025-09-29 43905824...
Google Chrome < 4.8.271.17 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 4.8.271.17. It is, therefore, affected by multiple vulnerabilities as referenced in the 201601stable-channel-update20 advisory. - Multiple unspecified vulnerabilities in Google Chrome before 48.0.2564.82 allow attackers...
Google Chrome < 4.8.271.17 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 4.8.271.17. It is, therefore, affected by multiple vulnerabilities as referenced in the 201601stable-channel-update20 advisory. - Multiple unspecified vulnerabilities in Google Chrome before 48.0.2564.82 allow attackers t...
CVE-2025-58188
Validating certificate chains which contain DSA public keys can cause programs to panic, due to a interface cast that assumes they implement the Equal method. This affects programs which validate arbitrary certificate chains. Mitigation Mitigation for this issue is either not available or the...
PT-2025-52880
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An integer overflow issue exists in the wavefront send sample function when validating sample size within the ALSA subsystem. The header-size field, which is a u32 type, is cast to an in...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990324)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990324 advisory. In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix a buf size overflow issue during udmabuf creation by casting sizelimitmb to u64 when...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989367)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989367 advisory. In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix a buf size overflow issue during udmabuf creation by casting sizelimitmb to u64 when...
EUVD-2025-36732
Validating certificate chains which contain DSA public keys can cause programs to panic, due to a interface cast that assumes they implement the Equal method. This affects programs which validate arbitrary certificate chains...
CVE-2025-58188
Validating certificate chains which contain DSA public keys can cause programs to panic, due to a interface cast that assumes they implement the Equal method. This affects programs which validate arbitrary certificate chains...
CVE-2025-58188
Validating certificate chains which contain DSA public keys can cause programs to panic, due to a interface cast that assumes they implement the Equal method. This affects programs which validate arbitrary certificate chains...
AZL-69146 CVE-2025-58188 affecting package msft-golang 1.24.13-1
Validating certificate chains which contain DSA public keys can cause programs to panic, due to a interface cast that assumes they implement the Equal method. This affects programs which validate arbitrary certificate chains...