CVE-2025-47314

Memory corruption while processing data sent by FE driver...

LinkedIn will use your data to train its AI unless you opt out now

LinkedIn plans to share user data with Microsoft and its affiliates for AI training. Framed as "legitimate interest", it won't ask for your permission—instead you'll have to opt out before the deadline. Microsoft has made major investments in ChatGPT’s creator OpenAI, and as we know, the more dat...

CVE-2025-47314

Memory corruption while processing data sent by FE driver...

PT-2025-39277

Name of the Vulnerable Software and Affected Versions Affected versions not specified Description A memory corruption issue exists when processing data received from the FE driver. This can lead to unpredictable behavior or potential system compromise. Recommendations At the moment, there is no...

CLSA-2025-1757962453 kernel: Fix of 32 CVEs

inet: fully convert sk-skrxdst to RCU rules CVE-2021-47103 - ALSA: usb-audio: Fix out of bounds reads when finding clock sources CVE-2024-53150 - posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel CVE-2025-38352 - can: peakusb: fix use after free bugs CVE-2021-47670 -...

CVE-2024-45433

OpenSynergy BlueSDK aka Blue SDK through 6.x has Incorrect Control Flow Scoping. The specific flaw exists within the BlueSDK Bluetooth stack. The issue results from the lack of proper return control flow after detecting an unusual condition. An attacker can leverage this to bypass a security...

CVE-2024-45433

OpenSynergy BlueSDK aka Blue SDK through 6.x has Incorrect Control Flow Scoping. The specific flaw exists within the BlueSDK Bluetooth stack. The issue results from the lack of proper return control flow after detecting an unusual condition. An attacker can leverage this to bypass a security...

OpenSynergy BlueSDK 安全漏洞

OpenSynergy BlueSDK is a Bluetooth stack from OpenSynergy, Germany. A security vulnerability exists in OpenSynergy BlueSDK 6.x and prior versions, which stems from the lack of proper return control flow after an exception condition is detected in the BlueSDK Bluetooth stack, which could lead to...

Linux Distros Unpatched Vulnerability : CVE-2025-52893

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. OpenBao before v2.3.0 m...

Malicious code in data-processing-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f5c7542831f6f9fe72a65e436b1f85c10261aac12ceae6f1bcc490afad6d1aaa Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

MAL-2025-47755 Malicious code in data-processing-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f5c7542831f6f9fe72a65e436b1f85c10261aac12ceae6f1bcc490afad6d1aaa Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

CVE-2025-21464

CVE-2025-21464 is documented in multiple sources as an information-disclosure (out-of-bounds read) issue affecting Qualcomm closed-source components, with the core vulnerability described as an information disclosure when reading data from an image using a specified offset and size. The CVE is li...

GO-2025-3780 OpenBao Inserts Sensitive Information into Log File when processing malformed data in github.com/openbao/openbao/sdk

OpenBao Inserts Sensitive Information into Log File when processing malformed data in github.com/openbao/openbao/sdk...

GO-2025-3787 May leak sensitive information in logs when processing malformed data in github.com/go-viper/mapstructure

May leak sensitive information in logs when processing malformed data in github.com/go-viper/mapstructure...

CVE-2025-53471

Emerson ValveLink products contain an input validation flaw where received data is not properly validated, potentially causing unsafe or incorrect data processing. The CVE notes a local, high-complexity impact with no privileges required (CVSS 3.1/5.1 and CVSS 4.0/5.9). The Red Hat/NVD/CVE lineag...

CVE-2025-53471 Emerson ValveLink Products Improper Input Validation

Emerson ValveLink products receive input or data, but it do not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly...

CVE-2025-53471 Emerson ValveLink Products Improper Input Validation

Emerson ValveLink products receive input or data, but it do not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly...

PT-2025-29185 · Emerson · Valvelink

Name of the Vulnerable Software and Affected Versions: Emerson ValveLink affected versions not specified Description: Emerson ValveLink products do not validate or incorrectly validate input data, potentially leading to unsafe or incorrect data processing. Recommendations: At the moment, there is...

SAP Business Warehouse和SAP Plug-In Basis 安全漏洞

SAP Business Warehouse and SAP Plug-In Basis are both products of SAP, Germany.SAP Business Warehouse is a key component for executing business processes that allows users to design, implement, and manage business processes, ensure process compliance, and reduce the need for manual operations...

CVE-2025-38220 ext4: only dirty folios when data journaling regular files

In the Linux kernel, the following vulnerability has been resolved: ext4: only dirty folios when data journaling regular files fstest generic/388 occasionally reproduces a crash that looks as follows: BUG: kernel NULL pointer dereference, address: 0000000000000000 ... Call Trace:...