17756 matches found
UBUNTU-CVE-2025-39753
In the Linux kernel, the following vulnerability has been resolved: gfs2: Set .migratefolio in gfs2rgrp,metaaops Clears up the warning added in 7ee3647243e5 "migrate: Remove call to -writepage" that occurs in various xfstests, causing "something found in dmesg" failures. 341.136573 gfs2metaaops...
CVE-2025-39743 jfs: truncate good inode pages when hard link is 0
In the Linux kernel, the following vulnerability has been resolved: jfs: truncate good inode pages when hard link is 0 The fileset value of the inode copy from the disk by the reproducer is AGGRRESERVEDI. When executing evict, its hard link number is 0, so its inode pages are not truncated. This...
Advisory ROSA-SA-2025-3000
software: grub2 2.06 WASP: ROSA-CHROME unaffected versions = grub2-2.06-24 affected versions grub2-2.06-24 CVE-ID: CVE-2024-45779 BDU-ID: 2025-03832 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the BFS file system of the Grub2 operating system boot loader is related to reads outside the allowed...
[SECURITY] Fedora 41 Update: wireshark-4.4.9-1.fc41
Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless WiFi or Bluetooth networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. It has many powerful...
CVE-2025-58751
A path traversal vulnerability has been identified in Vite’s static file serving logic, where files outside of the intended public directory may be served if their names share the same prefix or if symlinks are used to traverse upwards in the filesystem. An attacker could exploit this by placing ...
Important: Red Hat Security Advisory: kernel-rt security update
An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
[SECURITY] Fedora 43 Update: buildah-1.41.4-1.fc43
The buildah package provides a command line tool which can be used to create a working container from scratch or create a working container from an image as a starting point mount/umount a working container's root file system for manipulation save container's root file system layer to create a ne...
PT-2025-46612
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the f2fs file system related to handling page cache during inode destruction. Specifically, the issue arises in the f2fs truncate function where...
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2025-2072)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : ext4: update sjournalinum if it changes after journal replayCVE-2023-53091 arp: use RCU protection in arpxmit.CVE-2025-21762 iouring: prevent opco...
EulerOS 2.0 SP10 : libblockdev (EulerOS-SA-2025-2102)
According to the versions of the libblockdev packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A Local Privilege Escalation LPE vulnerability was found in libblockdev. Generally, the 'allowactive' setting in Polkit permits a physically...
CVE-2025-54916
Stack-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally...
CVE-2025-54916
Stack-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally...
CVE-2025-54105
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...
CVE-2025-54105
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...
CVE-2025-54105 Microsoft Brokering File System Elevation of Privilege Vulnerability
...
CVE-2025-54105 Microsoft Brokering File System Elevation of Privilege Vulnerability
...
CVE-2025-54105
CVE-2025-54105 describes a race condition in the Microsoft Brokering File System that can enable local privilege escalation by an authorized attacker. Connected sources confirm a Windows-focused vulnerability and indicate remediation via Microsoft hotpatches and September 2025 security updates (K...
CVE-2025-54916 Windows NTFS Remote Code Execution Vulnerability
...
CVE-2025-54916
CVE-2025-54916 is a Windows NTFS remote code execution vulnerability described as a stack-based overflow in NTFS. Connected sources confirm NTFS is affected and assign a high severity (CVSS ≈ 7.8). Public sources (including Krebs/NCSC) categorize this as an RCE issue for Windows NTFS, with exploi...
TOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIs
Cybersecurity researchers have discovered a variant of a recently disclosed campaign that abuses the TOR network for cryptojacking attacks targeting exposed Docker APIs. Akamai, which discovered the latest activity last month, said it's designed to block other actors from accessing the Docker API...