Security update for curl

This update for curl fixes the following issues: CVE-2025-9086: bug in path comparison logic when processing cookies can lead to out-of-bounds read in heap buffer bsc1249191. CVE-2025-10148: predictable websocket mask can lead to proxy cache poisoning by malicious server bsc1249348. Patch...

SUSE-SU-2025:03173-1 Security update for curl

This update for curl fixes the following issues: - CVE-2025-9086: bug in path comparison logic when processing cookies can lead to out-of-bounds read in heap buffer bsc1249191. - CVE-2025-10148: predictable websocket mask can lead to proxy cache poisoning by malicious server bsc1249348...

predictable WebSocket mask

...

PT-2025-37241

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel related to PCI link speed calculation during retrain failures. Specifically, when pcie failed link retrain fails to retrain a link, it attempts to...

CURL-CVE-2025-10148 predictable WebSocket mask

curl's WebSocket code did not update the 32-bit mask pattern for each new outgoing frame as the specification says. Instead it used a fixed mask that persisted and was used throughout the entire connection. A predictable mask pattern allows for a malicious server to induce traffic between the two...

predictable WebSocket mask

curl's WebSocket code did not update the 32-bit mask pattern for each new outgoing frame as the specification says. Instead it used a fixed mask that persisted and was used throughout the entire connection. A predictable mask pattern allows for a malicious server to induce traffic between the two...

wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask()

...

SUSE CVE-2025-39732

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitratemask ath11kmacdisablepeerfixedrate is passed as the iterator to ieee80211iteratestationsatomic. Note in this case the iterator is required to be atomic, however...

curl: CVE-2025-10148: predictable WebSocket mask

No AI was involved. Summary: The curl WebSocket implementation generates a fixed masking key at the beginning of a connection an re-uses it for every frame: Generation of masking key enc.mask in Curlwsaccept: https://github.com/curl/curl/blob/455afa1de5182b95a5dcc988f18cdff584b95239/lib/ws.cL1340...

Mask-GCG: Are All Tokens in Adversarial Suffixes Necessary for Jailbreak Attacks?

Jailbreak attacks on Large Language Models LLMs have demonstrated various successful methods whereby attackers manipulate models into generating harmful responses that they are designed to avoid. Among these, Greedy Coordinate Gradient GCG has emerged as a general and effective approach that...

CVE-2025-39732

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitratemask ath11kmacdisablepeerfixedrate is passed as the iterator to ieee80211iteratestationsatomic. Note in this case the iterator is required to be atomic, however...

UBUNTU-CVE-2025-39732

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitratemask ath11kmacdisablepeerfixedrate is passed as the iterator to ieee80211iteratestationsatomic. Note in this case the iterator is required to be atomic, however...

CVE-2025-39732

CVE-2025-39732: In the Linux kernel, the ath11k driver slept in an atomic context during ieee80211_iterate_stations_atomic() via ath11k_mac_disable_peer_fixed_rate(), triggering a BUG: sleeping function called from invalid context. The issue is fixed by switching the iteration to ieee80211_iterat...

CVE-2025-39732 wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask()

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitratemask ath11kmacdisablepeerfixedrate is passed as the iterator to ieee80211iteratestationsatomic. Note in this case the iterator is required to be atomic, however...

CVE-2025-39732 wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask()

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitratemask ath11kmacdisablepeerfixedrate is passed as the iterator to ieee80211iteratestationsatomic. Note in this case the iterator is required to be atomic, however...

Linux Distros Unpatched Vulnerability : CVE-2025-38736

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: Fix PHY address mask in MDIO bus initialization Syzbot reported...

Linux Distros Unpatched Vulnerability : CVE-2025-38725

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: usb: asixdevices: add phymask for ax88772 mdio bus Without setting phymask for ax88772 mdio bus, current driver may create at most 32 mdio phy devices with...

DEBIAN-CVE-2025-39719

In the Linux kernel, the following vulnerability has been resolved: iio: imu: bno055: fix OOB access of hwxlate array Fix a potential out-of-bounds array access of the hwxlate array in bno055.c. In bno055getregmask, hwxlate was iterated over the length of the vals array instead of the length of t...

DEBIAN-CVE-2025-38736

In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: Fix PHY address mask in MDIO bus initialization Syzbot reported shift-out-of-bounds exception on MDIO bus initialization. The PHY address should be masked to 5 bits 0-31. Without this mask, invalid PHY...

UBUNTU-CVE-2025-38736

In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: Fix PHY address mask in MDIO bus initialization Syzbot reported shift-out-of-bounds exception on MDIO bus initialization. The PHY address should be masked to 5 bits 0-31. Without this mask, invalid PHY...