UBUNTU-CVE-2025-39829

In the Linux kernel, the following vulnerability has been resolved: trace/fgraph: Fix the warning caused by missing unregister notifier This warning was triggered during testing on v6.16: notifier callback ftracesuspendnotifiercall already registered WARNING: CPU: 2 PID: 86 at kernel/notifier.c:2...

CVE-2025-39829 trace/fgraph: Fix the warning caused by missing unregister notifier

In the Linux kernel, the following vulnerability has been resolved: trace/fgraph: Fix the warning caused by missing unregister notifier This warning was triggered during testing on v6.16: notifier callback ftracesuspendnotifiercall already registered WARNING: CPU: 2 PID: 86 at kernel/notifier.c:2...

CVE-2025-39829 trace/fgraph: Fix the warning caused by missing unregister notifier

In the Linux kernel, the following vulnerability has been resolved: trace/fgraph: Fix the warning caused by missing unregister notifier This warning was triggered during testing on v6.16: notifier callback ftracesuspendnotifiercall already registered WARNING: CPU: 2 PID: 86 at kernel/notifier.c:2...

CVE-2025-39829 trace/fgraph: Fix the warning caused by missing unregister notifier

In the Linux kernel, the following vulnerability has been resolved: trace/fgraph: Fix the warning caused by missing unregister notifier This warning was triggered during testing on v6.16: notifier callback ftracesuspendnotifiercall already registered WARNING: CPU: 2 PID: 86 at kernel/notifier.c:2...

CVE-2025-39829

CVE-2025-39829 is a Linux kernel issue in the trace/fgraph path. The vulnerability arises from a notifier that is not unregistered after a failed start_graph_tracing, causing a repeated warning when writing to function_profile_enabled. The connected Nessus entries confirm the concrete details: th...

A Graph-Based Approach to Alert Contextualisation in Security Operations Centres

Interpreting the massive volume of security alerts is a significant challenge in Security Operations Centres SOCs. Effective contextualisation is important, enabling quick distinction between genuine threats and benign activity to prioritise what needs further analysis.This paper proposes a...

DEBIAN-CVE-2023-53261

In the Linux kernel, the following vulnerability has been resolved: coresight: Fix memory leak in acpibuffer-pointer There are memory leaks reported by kmemleak: ... unreferenced object 0xffff00213c141000 size 1024: comm "systemd-udevd", pid 2123, jiffies 4294909467 age 6062.160s hex dump first 3...

CVE-2023-53261

In the Linux kernel, the following vulnerability has been resolved: coresight: Fix memory leak in acpibuffer-pointer There are memory leaks reported by kmemleak: ... unreferenced object 0xffff00213c141000 size 1024: comm "systemd-udevd", pid 2123, jiffies 4294909467 age 6062.160s hex dump first 3...

CVE-2023-53261 coresight: Fix memory leak in acpi_buffer->pointer

In the Linux kernel, the following vulnerability has been resolved: coresight: Fix memory leak in acpibuffer-pointer There are memory leaks reported by kmemleak: ... unreferenced object 0xffff00213c141000 size 1024: comm "systemd-udevd", pid 2123, jiffies 4294909467 age 6062.160s hex dump first 3...

CVE-2023-53261

CVE-2023-53261 : Linux kernel coresight memory leak in acpi_buffer->pointer. The leak occurs because the temporary buffer is not freed before returning from acpi_get_dsd_graph(); the fix moves buf to acpi_coresight_parse_graph() and frees it prior to function return. Affected: Linux kernel (as...

CVE-2022-50309

CVE-2022-50309 : Linux kernel vulnerability in media: xilinx: vipp, fixed in the commit that adds balance for refcount in xvip_graph_dma_init. The issue arises because of_get_child_by_name() returns a node pointer with its refcount incremented, and there was no corresponding of_node_put() when th...

CVE-2022-50309 media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init

In the Linux kernel, the following vulnerability has been resolved: media: xilinx: vipp: Fix refcount leak in xvipgraphdmainit ofgetchildbyname returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

GHSA-2GG8-85M5-8R2P Chaos Mesh's Chaos Controller Manager is Missing Authentication for Critical Function

The Chaos Controller Manager in Chaos Mesh exposes a GraphQL debugging server without authentication to the entire Kubernetes cluster, which provides an API to kill arbitrary processes in any Kubernetes pod, leading to cluster-wide denial of service...

CVE-2025-59358

The Chaos Controller Manager in Chaos Mesh exposes a GraphQL debugging server without authentication to the entire Kubernetes cluster, which provides an API to kill arbitrary processes in any Kubernetes pod, leading to cluster-wide denial of service...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...

Anomaly Detection in Industrial Control Systems Based on Cross-Domain Representation Learning

Industrial control systems ICSs are widely used in industry, and their security and stability are very important. Once the ICS is attacked, it may cause serious damage. Therefore, it is very important to detect anomalies in ICSs. ICS can monitor and manage physical devices remotely using...

Chaos Mesh 访问控制错误漏洞

Chaos Mesh is an open source cloud-native engineering platform from Chaos Mesh Open Source. Chaos Mesh suffers from an Access Control Error vulnerability that stems from an unauthenticated GraphQL debugging server being exposed to the entire Kubernetes cluster, potentially resulting in a...

CVE-2025-43796

Liferay Portal 7.4.0 through 7.4.3.101, and Liferay DXP 2023.Q3.0 through 2023.Q3.4, 7.4 GA through update 92 and 7.3 GA though update 35 does not limit the number of objects returned from a GraphQL queries, which allows remote attackers to perform denial-of-service DoS attacks on the application...

Feature-Centric Approaches to Android Malware Analysis: a Survey

Sophisticated malware families exploit the openness of the Android platform to infiltrate IoT networks, enabling large-scale disruption, data exfiltration, and denial-of-service attacks. This systematic literature review SLR examines cutting-edge approaches to Android malware analysis with direct...

URL2Graph++: Unified Semantic-Structural-Character Learning for Malicious URL Detection

Malicious URL detection remains a major challenge in cybersecurity, primarily due to two factors: 1 the exponential growth of the Internet has led to an immense diversity of URLs, making generalized detection increasingly difficult; and 2 attackers are increasingly employing sophisticated...