CVE-2023-53794

In the Linux kernel, the following vulnerability has been resolved: cifs: fix session state check in reconnect to avoid use-after-free issue Don't collect exiting session in smb2reconnectserver, because it will be released soon. Note that the exiting session will stay in server-smbseslist until i...

CVE-2023-53838

A race condition was found in the F2FS filesystem's atomic write abort handling in the Linux kernel. Concurrent atomic write abort operations lack proper synchronization, which can lead to inconsistent COW copy-on-write inode state and potential use-after-free or data corruption scenarios...

CVE-2023-53846

A use-after-free vulnerability was found in the F2FS filesystem in the Linux kernel. The truncatednode function lacks proper sanity checks on direct node pages, allowing a corrupted filesystem where one inode incorrectly references another inode's node to trigger out-of-bounds memory access durin...

kernel: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm()

A vulnerability has been identified in the Linux kernel's Network File System NFS daemon that could allow for a Denial of Service and in worst case scenario Arbitrary Code Execution. This Use-After-Free flaw arises from a race condition when the kernel handles the confirmation of an NFS client...

SUSE CVE-2022-50643

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifscopyfilerange If the file is used by swap, before return -EOPNOTSUPP, should free the xid, otherwise, the xid will be leaked...

SUSE CVE-2023-53794

In the Linux kernel, the following vulnerability has been resolved: cifs: fix session state check in reconnect to avoid use-after-free issue Don't collect exiting session in smb2reconnectserver, because it will be released soon. Note that the exiting session will stay in server-smbseslist until i...

SUSE CVE-2023-53804

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free bug of nilfsroot in nilfsevictinode During unmount process of nilfs2, nothing holds nilfsroot structure after nilfs2 detaches its writer in nilfsdetachlogwriter. However, since nilfsevictinode uses...

Linux Distros Unpatched Vulnerability : CVE-2022-50643

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cifs: Fix xid leak in cifscopyfilerange If the file is used by swap, before return -EOPNOTSUPP, should free the xid, otherwise, the xid will be leaked...

CVE-2025-61823

Adobe ColdFusion is affected by CVE-2025-61823: an Improper Restriction of XML External Entity Reference (XXE) vulnerability allows a high-privilege attacker to read arbitrary files on the server. The issue affects ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier, with exploitation requir...

Microsoft Patch Tuesday for December 2025 — Snort rules and prominent vulnerabilities

The Patch Tuesday for December of 2025 includes 57 vulnerabilities, including two that Microsoft marked as "critical." The remaining vulnerabilities listed are classified as "important." Microsoft assessed that exploitation of the two "critical" vulnerabilities is "less likely." CVE ‑2025‑62562 i...

EUVD-2023-60135

In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...

EUVD-2023-60134

In the Linux kernel, the following vulnerability has been resolved: hfs: fix missing hfsbnodeget in hfsbnodecreate Syzbot found a kernel BUG in hfsbnodeput: kernel BUG at fs/hfs/bnode.c:466! invalid opcode: 0000 1 PREEMPT SMP KASAN CPU: 0 PID: 3634 Comm: kworker/u4:5 Not tainted...

EUVD-2023-60158

In the Linux kernel, the following vulnerability has been resolved: f2fs: synchronize atomic write aborts To fix a race condition between atomic write aborts, I use the inode lock and make COW inode to be re-usable thoroughout the whole atomic file inode lifetime...

EUVD-2023-60150

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on direct node in truncatednode syzbot reports below bug: BUG: KASAN: slab-use-after-free in f2fstruncatedatablocksrange+0x122a/0x14c0 fs/f2fs/file.c:574 Read of size 4 at addr ffff88802a25c000 by tas...

CVE-2025-62569

Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

CVE-2025-62569

Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

CVE-2025-62469

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

CVE-2025-62470

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

CVE-2025-62470

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

CVE-2025-62469

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...