KB5072033: Windows 11 Version 24H2 / Windows Server 2025 / Windows 11 Version 25H2 Security Update (December 2025)

The remote Windows host is missing security update 5072033 or hotpatch 5072014. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-62549 -...

PT-2025-50158

Name of the Vulnerable Software and Affected Versions Windows Resilient File System ReFS affected versions not specified Description A heap-based buffer overflow exists in Windows Resilient File System ReFS. This flaw potentially allows an authorized attacker to execute code over a network...

PT-2025-50151

Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description An out-of-bounds read issue exists in the Windows Projected File System. A local attacker who successfully exploits this issue can elevate privileges. This issue allows attackers to affect th...

KB5071542: Windows Server version 23H2 Security Update (December 2025)

The remote Windows host is missing security update 5071542. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-62549 - Heap-based buffer...

EUVD-2025-201700

Improper configuration of the SSH service in Infinera MTC-9 allows an unauthenticated attacker to execute arbitrary commands and access data on file system . This issue affects MTC-9: from R22.1.1.0275 before R23.0...

cifs: client: fix memory leak in smb3_fs_context_parse_param

...

NFSD: free copynotify stateid in nfs4_free_ol_stateid()

...

EUVD-2023-60071

In the Linux kernel, the following vulnerability has been resolved: irqchip/irq-mvebu-gicp: Fix refcount leak in mvebugicpprobe ofirqfindparent returns a node pointer with refcount incremented, We should use ofnodeput on it when not needed anymore. Add missing ofnodeput to avoid refcount leak...

EUVD-2022-55690

In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential memory leak in ext4fcrecordmodifiedinode As krealloc may return NULL, in this case 'state-fcmodifiedinodes' may not be freed by krealloc, but 'state-fcmodifiedinodes' already set NULL. Then will lead to...

EUVD-2025-201638

In the Linux kernel, the following vulnerability has been resolved: exfat: validate cluster allocation bits of the allocation bitmap syzbot created an exfat image with cluster bits not set for the allocation bitmap. exfat-fs reads and uses the allocation bitmap without checking this. The problem ...

EUVD-2025-201621

In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix crash in nfsd4readrelease When tracing is enabled, the tracenfsdreaddone trace point crashes during the pynfs read.testNoFh test...

EUVD-2025-201642

In the Linux kernel, the following vulnerability has been resolved: btrfs: ensure no dirty metadata is written back for an fs with errors BUG During development of a minor feature make sure all btrfsbio::endio is called in task context, I noticed a crash in generic/388, where metadata writes...

CVE-2023-53766

In the Linux kernel, the following vulnerability has been resolved: FS: JFS: Check for read-only mounted filesystem in txBegin This patch adds a check for read-only mounted filesystem in txBegin before starting a transaction potentially saving from NULL pointer deref...

DEBIAN-CVE-2023-53766

In the Linux kernel, the following vulnerability has been resolved: FS: JFS: Check for read-only mounted filesystem in txBegin This patch adds a check for read-only mounted filesystem in txBegin before starting a transaction potentially saving from NULL pointer deref...

DEBIAN-CVE-2023-53763

In the Linux kernel, the following vulnerability has been resolved: Revert "f2fs: fix to do sanity check on extent cache correctly" syzbot reports a f2fs bug as below: UBSAN: array-index-out-of-bounds in fs/f2fs/f2fs.h:3275:19 index 1409 is out of range for type 'le32923' aka 'unsigned int923' Ca...

CVE-2023-53751

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential use-after-free bugs in TCPServerInfo::hostname TCPServerInfo::hostname may be updated once or many times during reconnect, so protect its access outside reconnect path as well and then prevent any potential...

DEBIAN-CVE-2023-53751

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential use-after-free bugs in TCPServerInfo::hostname TCPServerInfo::hostname may be updated once or many times during reconnect, so protect its access outside reconnect path as well and then prevent any potential...

CVE-2022-50622

In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential memory leak in ext4fcrecordmodifiedinode As krealloc may return NULL, in this case 'state-fcmodifiedinodes' may not be freed by krealloc, but 'state-fcmodifiedinodes' already set NULL. Then will lead to...

UBUNTU-CVE-2023-53766

In the Linux kernel, the following vulnerability has been resolved: FS: JFS: Check for read-only mounted filesystem in txBegin This patch adds a check for read-only mounted filesystem in txBegin before starting a transaction potentially saving from NULL pointer deref...

CVE-2023-53766 FS: JFS: Check for read-only mounted filesystem in txBegin

In the Linux kernel, the following vulnerability has been resolved: FS: JFS: Check for read-only mounted filesystem in txBegin This patch adds a check for read-only mounted filesystem in txBegin before starting a transaction potentially saving from NULL pointer deref...