389-ds-base: null pointer dereference leads to denial of service

A flaw was found in the 389-ds-base LDAP Server. This issue occurs when issuing a Modify DN LDAP operation through the ldap protocol, when the function return value is not tested and a NULL pointer is dereferenced. If a privileged user performs a ldap MODDN operation after a failed operation, it...

CVE-2025-46728

cpp-httplib is a C++ header-only HTTP/HTTPS server and client library. Prior to version 0.20.1, the library fails to enforce configured size limits on incoming request bodies when Transfer-Encoding: chunked is used or when no Content-Length header is provided. A remote attacker can send a chunked...

CVE-2025-47256

Libxmp through 4.6.2 has a stack-based buffer overflow in depackpha in loaders/prowizard/pha.c via a malformed Pha format tracker module in a .mod file...

CVE-2024-40635 affecting package containerd for versions less than 1.7.13-8

CVE-2024-40635 affecting package containerd for versions less than 1.7.13-8. A patched version of the package is available...

CVE-2024-58100

In the Linux kernel, the following vulnerability has been resolved: bpf: check changespktdata property for extension programs When processing calls to global sub-programs, verifier decides whether to invalidate all packet pointers in current state depending on the changespktdata property of the...

CVE-2025-23016 affecting package fcgi for versions less than 2.4.5-1

CVE-2025-23016 affecting package fcgi for versions less than 2.4.5-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-21666 affecting package kernel for versions less than 5.15.180.1-1

CVE-2025-21666 affecting package kernel for versions less than 5.15.180.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-4467 affecting package qemu for versions less than 6.2.0-24

CVE-2024-4467 affecting package qemu for versions less than 6.2.0-24. A patched version of the package is available...

CVE-2025-21820 affecting package kernel for versions less than 5.15.179.1-1

CVE-2025-21820 affecting package kernel for versions less than 5.15.179.1-1. A patched version of the package is available...

CVE-2025-22007 affecting package kernel for versions less than 5.15.180.1-1

CVE-2025-22007 affecting package kernel for versions less than 5.15.180.1-1. A patched version of the package is available...

CVE-2025-21736 affecting package kernel for versions less than 5.15.179.1-1

CVE-2025-21736 affecting package kernel for versions less than 5.15.179.1-1. A patched version of the package is available...

firefox security update

128.10.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 128.10.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.10.0-1 - Update to 128.10.0 build1...

GHSA-GCQF-F89C-68HV vulnerabilities

Vulnerabilities for packages: splunk-otel-collector, splunk-otel-collector-fips...

CVE-2023-53144

In the Linux kernel, the following vulnerability has been resolved: erofs: fix wrong kunmap when using LZMA on HIGHMEM platforms As the call trace shown, the root cause is kunmap incorrect pages: BUG: kernel NULL pointer dereference, address: 00000000 CPU: 1 PID: 40 Comm: kworker/u5:0 Not tainted...

CVE-2023-53078

In the Linux kernel, the following vulnerability has been resolved: scsi: scsidhalua: Fix memleak for 'qdata' in aluaactivate If aluartpgqueue failed from aluaactivate, then 'qdata' is not freed, which will cause following memleak: unreferenced object 0xffff88810b2c6980 size 32: comm...

CVE-2023-53130

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2023-53074

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix ttmbo calltrace warning in psphwfini The call trace occurs when the amdgpu is removed after the mode1 reset. During mode1 reset, from suspend to resume, there is no need to reinitialize the ta firmware buffer whic...

CVE-2023-53047

In the Linux kernel, the following vulnerability has been resolved: tee: amdtee: fix race condition in amdteeopensession There is a potential race condition in amdteeopensession that may lead to use-after-free. For instance, in amdteeopensession after sess-sessmask is set, and before setting:...

CVE-2023-53136

In the Linux kernel, the following vulnerability has been resolved: afunix: fix struct pid leaks in OOB support syzbot reported struct pid leak 1. Issue is that queueoob calls maybeaddcreds which potentially holds a reference on a pid. But skb-destructor is not set either directly or by calling...

CVE-2024-55069

ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamfreadheader in /libavformat/iamfdec.c...