CVE-2025-62492 Heap out-of-bounds read in js_typed_array_indexOf in QuickJS

A vulnerability stemming from floating-point arithmetic precision errors exists in the QuickJS engine's implementation of TypedArray.prototype.indexOf when a negative fromIndex argument is supplied. The fromIndex argument read as a double variable, $d$ is used to calculate the starting position f...

CVE-2025-62492

CVE-2025-62492 is a vulnerability in the QuickJS engine affecting the implementation of TypedArray.prototype.indexOf(). When a negative fromIndex is supplied, the calculation d_new = d + len can suffer floating-point precision loss, producing k = len. The search then reads starting at index len, ...

CVE-2025-62492

A vulnerability stemming from floating-point arithmetic precision errors exists in the QuickJS engine's implementation of TypedArray.prototype.indexOf when a negative fromIndex argument is supplied. The fromIndex argument read as a double variable, $d$ is used to calculate the starting position f...

PT-2025-42489

Name of the Vulnerable Software and Affected Versions QuickJS affected versions not specified Description An issue exists in the QuickJS engine related to floating-point arithmetic precision errors within the TypedArray.prototype.indexOf function when a negative fromIndex argument is provided...

Linux Distros Unpatched Vulnerability : CVE-2025-39944

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - octeontx2-pf: Fix use-after-free bugs in otx2synctstamp The original code relies on canceldelayedwork in otx2ptpdestroy, which does not ensure that the delayed...

EUVD-2021-15186

Malware in sbrugna...

EUVD-2018-1296

Malware in sbrugna...

EUVD-2018-1201

Malware in sbrugna...

EUVD-2013-3516

Malware in sbrugna...

EUVD-2020-14823

Malware in sbrugna...

EUVD-2020-7109

Malware in sbrugna...

EUVD-2016-5331

Malware in sbrugna...

EUVD-2018-4341

Malware in sbrugna...

EUVD-2018-17916

Malware in sbrugna...

Breaking Precision Time: OS Vulnerability Exploits against IEEE 1588

The Precision Time Protocol PTP, standardized as IEEE 1588, provides sub-microsecond synchronization across distributed systems and underpins critical infrastructure in telecommunications, finance, power systems, and industrial automation. While prior work has extensively analyzed PTP's...

UBUNTU-CVE-2025-39944

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix use-after-free bugs in otx2synctstamp The original code relies on canceldelayedwork in otx2ptpdestroy, which does not ensure that the delayed work item synctstampwork has fully completed if it was already runnin...

EUVD-2022-37331

Malicious code in bioql PyPI...

EUVD-2022-37332

Malicious code in bioql PyPI...

EUVD-2022-37361

Malicious code in bioql PyPI...

EUVD-2022-37365

Malicious code in bioql PyPI...