kernel: iommu/amd: Fix pci device refcount leak in ppr_notifier()

A reference counting violation was found in the Linux kernel's AMD IOMMU PPR Peripheral Page Request notification handler. When the handler looks up PCI devices using pcigetdomainbusandslot, it receives a reference-counted device pointer but never releases that reference before returning. This...

kernel: KVM: Reject attempts to consume or refresh inactive gfn_to_pfn_cache

In the Linux kernel, the following vulnerability has been resolved: KVM: Reject attempts to consume or refresh inactive gfntopfncache Reject kvmgpccheck and kvmgpcrefresh if the cache is inactive. Not checking the active flag during refresh is particularly egregious, as KVM can end up with a vali...

PT-2025-40739

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue related to a PCI device reference count leak within the ppr notifier function in the iommu/amd module. The pci get domain bus and slot function...

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.95.0.0) +7 more potentially affected by CVE-2023-43796 via matrix-synapse (>=0.33.9 <=1.95.0)

matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-43796 Source advisory: OSV:GHSA-MP92-3JFM-3575...

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.93.0.0) +7 more potentially affected by CVE-2023-45129 via matrix-synapse (>=0.33.9 <=1.93.0)

matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-45129 Source advisory: OSV:PYSEC-2023-199...

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.92.2.0) +6 more potentially affected by CVE-2023-42453 via matrix-synapse (>=1.153.0 <=1.92.2)

matrix-synapse PYPI version =1.153.0, =0.1.1, =1.65.0.0, =0.1.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-42453 Source advisory: OSV:GHSA-7565-CQ32-VX2X...

CVE-2023-30713

Improper privilege management vulnerability in FolderLockNotifier in One UI Home prior to SMR Sep-2023 Release 1 allows local attackers to change some settings of the folder lock...

PT-2025-53172

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the powerpc/iommu subsystem related to the sharing of notifiers between PCI and VIO buses. The fail iommu setup function registers the fail iommu bus...

GHSA-7GJ7-224W-VPR3 Spring-boot-admin sandbox bypass via crafted HTML

Thymeleaf through 3.1.1.RELEASE as used in spring-boot-admin aka Spring Boot Admin through 3.1.1 allows for a sandbox bypass via crafted HTML. This may be relevant for SSTI Server Side Template Injection and code execution in spring-boot-admin if MailNotifier is enabled and there is write access ...

PT-2025-40227

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's Bluetooth implementation where a race condition can occur during device suspension. Specifically, if hci unregister dev frees the hci dev object while...

The vulnerability of the Jenkins Cisco Spark Plugin, related to the storage of passwords in an unencrypted form, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Jenkins Cisco Spark Plugin is related to the storage of passwords in an unencrypted form in the configuration file org.jenkinsci.plugins.spark.SparkNotifier.xml. Exploiting this vulnerability could allow a remote attacker to gain unauthorized access to protected informati...

The vulnerability of the Jenkins Cisco Spark Notifier Plugin, related to deficiencies in access control, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Jenkins Cisco Spark Notifier Plugin is related to deficiencies in access control when processing HTTP endpoints. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.73.0.1) +7 more potentially affected by CVE-2023-32323 via matrix-synapse (>=0.33.9 <=1.73.0)

matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-32323 Source advisory: OSV:PYSEC-2023-67...

matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.73.0.1) +7 more potentially affected by CVE-2023-32323 via matrix-synapse (>=0.33.9 <=1.73.0)

matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-32323 Source advisory: OSV:GHSA-F3WC-3VXV-XMVR...

CVE-2023-2179

The WooCommerce Order Status Change Notifier WordPress plugin through 1.1.0 does not have authorisation and CSRF when updating status orders via an AJAX action available to any authenticated users, which could allow low privilege users such as subscriber to update arbitrary order status, making...

CVE-2023-2179

The WooCommerce Order Status Change Notifier WordPress plugin through 1.1.0 does not have authorisation and CSRF when updating status orders via an AJAX action available to any authenticated users, which could allow low privilege users such as subscriber to update arbitrary order status, making...

CVE-2023-2179

CVE-2023-2179 concerns the WooCommerce Order Status Change Notifier WordPress plugin (versions up to 1.1.0). The connected sources confirm a lack of authorization and CSRF protection when performing an AJAX-based order-status update, which is accessible to any authenticated user, potentially enab...

PT-2023-18343 · WordPress · Woocommerce Order Status Change Notifier

Name of the Vulnerable Software and Affected Versions: WooCommerce Order Status Change Notifier WordPress plugin version 1.1.0 and earlier Description: The issue is related to a lack of authorization and CSRF protection when updating order status via an AJAX action, which is available to any...

WordPress plugin WooCommerce Order Status Change Notifier 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

kernel: netfilter: nf_tables: netlink notifier might race to release objects

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: netlink notifier might race to release objects commit release path is invoked via callrcu and it runs lockless to release the objects after rcu grace period. The netlink notifier handler might win race to...