Uniswap 安全漏洞

Uniswap is a core smart contract in the Uniswap open source. A security vulnerability exists in Uniswap version 3.0, which stems from the modifyPosition function potentially leading to elevation of privilege...

SUSE CVE-2023-53034

In the Linux kernel, the following vulnerability has been resolved: ntbhwswitchtec: Fix shift-out-of-bounds in switchtecntbmwsettrans There is a kernel API ntbmwcleartrans would pass 0 to both addr and size. This would make xlatepos negative. 23.734156 switchtec switchtec0: MW 0: part 0 addr...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : poppler (SUSE-SU-2025:1342-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1342-1 advisory. - CVE-2025-32364: Fixed a floating point exception. bsc1240880 - CVE-2025-32365: Fixed the isOk...

SUSE-SU-2025:1342-1 Security update for poppler

This update for poppler fixes the following issues: - CVE-2025-32364: Fixed a floating point exception. bsc1240880 - CVE-2025-32365: Fixed the isOk check in JBIG2Bitmap::combine function in JBIG2Stream.cc. bsc1240881 - Adding -fpie compile flag to GCC for Position Independent Executable PIE suppo...

CVE-2023-53034

CVE-2023-53034 is addressed in the Linux kernel ntb_hw_switchtec driver with a fix for a shift-out-of-bounds condition in switchtec_ntb_mw_set_trans. The root cause was that ntb_mw_clear_trans() could pass 0 to both addr and size, causing xlate_pos to become negative and triggering a UBSAN shift-...

Application change coordinates when reconnecting to Citrix session from same client.

Users connect to Remote PC Access VDA in the office. Both office PC and the client they are connecting from have identical 6 monitor configuration. When they remote in and position their applications on specific screens and then reconnect, sometimes applications move to main screen instead of...

Apple Fined €150 Million by French Regulator Over Discriminatory ATT Consent Practices

Apple has been hit with a fine of €150 million $162 million by France's competition watchdog over the implementation of its App Tracking Transparency ATT privacy framework. The Autorité de la concurrence said it's imposing a financial penalty against Apple for abusing its dominant position as a...

CVE-2023-52978

In the Linux kernel, the following vulnerability has been resolved: riscv: kprobe: Fixup kernel panic when probing an illegal position The kernel would panic when probed for an illegal position. eg: CONFIGRISCVISAC=n echo 'p:hello kernelclone+0x16 a0=%a0' kprobeevents echo 1...

SUSE CVE-2023-52978

In the Linux kernel, the following vulnerability has been resolved: riscv: kprobe: Fixup kernel panic when probing an illegal position The kernel would panic when probed for an illegal position. eg: CONFIGRISCVISAC=n echo 'p:hello kernelclone+0x16 a0=%a0' kprobeevents echo 1...

CVE-2023-52978

In the Linux kernel, the following vulnerability has been resolved: riscv: kprobe: Fixup kernel panic when probing an illegal position The kernel would panic when probed for an illegal position. eg: CONFIGRISCVISAC=n echo 'p:hello kernelclone+0x16 a0=%a0' kprobeevents echo 1...

DEBIAN-CVE-2023-52978

In the Linux kernel, the following vulnerability has been resolved: riscv: kprobe: Fixup kernel panic when probing an illegal position The kernel would panic when probed for an illegal position. eg: CONFIGRISCVISAC=n echo 'p:hello kernelclone+0x16 a0=%a0' kprobeevents echo 1...

UBUNTU-CVE-2023-52978

In the Linux kernel, the following vulnerability has been resolved: riscv: kprobe: Fixup kernel panic when probing an illegal position The kernel would panic when probed for an illegal position. eg: CONFIGRISCVISAC=n echo 'p:hello kernelclone+0x16 a0=%a0' kprobeevents echo 1...

CVE-2023-52978 riscv: kprobe: Fixup kernel panic when probing an illegal position

In the Linux kernel, the following vulnerability has been resolved: riscv: kprobe: Fixup kernel panic when probing an illegal position The kernel would panic when probed for an illegal position. eg: CONFIGRISCVISAC=n echo 'p:hello kernelclone+0x16 a0=%a0' kprobeevents echo 1...

CVE-2023-52978

Summary (CVE-2023-52978) : A Linux kernel issue affecting riscv kprobe probing of illegal positions could trigger a kernel panic with stack-protector corruption (example: probing in the middle of an instruction). The fix adds arch_check_kprobe in arch_prepare_kprobe to prevent illegal probe posit...

CVE-2023-52978 riscv: kprobe: Fixup kernel panic when probing an illegal position

In the Linux kernel, the following vulnerability has been resolved: riscv: kprobe: Fixup kernel panic when probing an illegal position The kernel would panic when probed for an illegal position. eg: CONFIGRISCVISAC=n echo 'p:hello kernelclone+0x16 a0=%a0' kprobeevents echo 1...

CVE-2023-52978 riscv: kprobe: Fixup kernel panic when probing an illegal position

In the Linux kernel, the following vulnerability has been resolved: riscv: kprobe: Fixup kernel panic when probing an illegal position The kernel would panic when probed for an illegal position. eg: CONFIGRISCVISAC=n echo 'p:hello kernelclone+0x16 a0=%a0' kprobeevents echo 1...

CVE-2023-52978

In the Linux kernel, the following vulnerability has been resolved: riscv: kprobe: Fixup kernel panic when probing an illegal position The kernel would panic when probed for an illegal position. eg: CONFIGRISCVISAC=n echo 'p:hello kernelclone+0x16 a0=%a0' kprobeevents echo 1...

SUSE CVE-2022-49222

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: anx7625: Fix overflow issue on reading EDID The length of EDID block can be longer than 256 bytes, so we should use int instead of u8 for the edidpos variable...

SUSE-SU-2025:0723-1 Security update for vim

This update for vim fixes the following issues: Update to version 9.1.1101: - CVE-2024-43790: possible out-of-bounds read when performing a search command bsc1229685. - CVE-2024-43802: heap buffer overflow due to incorrect flushing of the typeahead buffer bsc1229822. - CVE-2024-45306: heap buffer...

BIT-RUBY-MIN-2021-32066

An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net::IMAP does not raise an exception when StartTLS fails with an an unknown response, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between th...