Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from btrfs not initializing device zone information, which could lead to null pointer dereference...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly handling reassigned nodes, which could lead to tree modification log errors...

PT-2025-18615 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, specifically in the btrfs file system. The issue is related to the mishandling of the tree mod log for reallocated nodes, which c...

PT-2025-22233

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A null pointer dereference issue has been identified in the Linux kernel, specifically in the mtk-pmic-keys input module. The problem occurs when the regs parameter is not set in the mtk...

Efficient Patient-Centric EMR Sharing Block Tree

Flexible sharing of electronic medical records EMRs is an urgent need in healthcare, as fragmented storage creates EMR management complexity for both practitioners and patients. Blockchain has emerged as a promising solution to address the limitations of centralized EMR systems regarding...

Automating Function-Level TARA for Automotive Full-Lifecycle Security

As modern vehicles evolve into intelligent and connected systems, their growing complexity introduces significant cybersecurity risks. Threat Analysis and Risk Assessment TARA has therefore become essential for managing these risks under mandatory regulations. However, existing TARA automation...

PT-2025-35970

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to an upper bound check of the tree index in the dbAllocAG function within the JFS filesystem. Specifically, the code does not verify if the...

AI-Based Vulnerability Analysis of NFT Smart Contracts

With the rapid growth of the NFT market, the security of smart contracts has become crucial. However, existing AI-based detection models for NFT contract vulnerabilities remain limited due to their complexity, while traditional manual methods are time-consuming and costly. This study proposes an...

Malicious code in tree-sitter-your-language (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a2eb2b9f4016b7bb6e4361eba8cd63c311f6f4674e10edc744de4622f0766482 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3422 Malicious code in tree-sitter-your-language (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a2eb2b9f4016b7bb6e4361eba8cd63c311f6f4674e10edc744de4622f0766482 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

rexml: DoS vulnerability in REXML

A vulnerability was found in REXML RubyGems. This package is vulnerable to denial of service DoS when parsing a deep XML structure with the same local name attribute. This vulnerability only affects tree parser API like REXML::Document.new, other parser APIs such as stream parser API and SAX2...

PT-2025-22271

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns a couple of races in MNT TREE BENEATH handling by do move mount. Normally, do lock mount locks a mountpoint pinned by the path, but in the 'beneath' case, the object...

The vulnerability of the oc_huff_tree_unpack function in Theora video codecs, which allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ochufftreeunpack function in Theora video encoding involves an unacceptable left shift operation. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

Scalable APT Malware Classification Via Parallel Feature Extraction and GPU-Accelerated Learning

This paper presents an underlying framework for both automating and accelerating malware classification, more specifically, mapping malicious executables to known Advanced Persistent Threat APT groups. The main feature of this analysis is the assembly-level instructions present in executables whi...

xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()

An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect may fail if it cannot allocate the backing pixmap. In that case, compRedirectWindow will return a BadAlloc error without validating the window tree marked just before, which leaves the...

OpCode-Based Malware Classification Using Machine Learning and Deep Learning Techniques

This technical report presents a comprehensive analysis of malware classification using OpCode sequences. Two distinct approaches are evaluated: traditional machine learning using n-gram analysis with Support Vector Machine SVM, K-Nearest Neighbors KNN, and Decision Tree classifiers; and a deep...

Attack-Defense Trees with Offensive and Defensive Attributes (With Appendix)

Effective risk management in cybersecurity requires a thorough understanding of the interplay between attacker capabilities and defense strategies. Attack-Defense Trees ADTs are a commonly used methodology for representing this interplay; however, previous work in this domain has only focused on...

UBUNTU-CVE-2025-22079

In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate ltreedepth to avoid out-of-bounds access The ltreedepth field is 16-bit le16, but the actual maximum depth is limited to OCFS2MAXPATHDEPTH. Add a check to prevent out-of-bounds access if ltreedepth has an invalid...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unverified ltreedepth field in ocfs2, which could lead to out-of-bounds access...

PT-2025-22192

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the btrfs file system. The issue occurs when running machines with a 64k page size and a 16k nodesize, causing tree log...