CVE-2025-0003

Inadequate lock protection within Xilinx Run time may allow a local attacker to trigger a Use-After-Free condition potentially resulting in loss of confidentiality or availability...

CVE-2025-0007

Insufficient validation within Xilinx Run Time framework could allow a local attacker to escalate privileges from user space to kernel space, potentially compromising confidentiality, integrity, and/or availability...

CVE-2025-52538

Improper input validation within the XOCL driver may allow a local attacker to generate an integer overflow condition, potentially resulting in loss of confidentiality or availability...

CVE-2025-64313

Denial of service DoS vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability...

kernel: ice: ice_adapter: release xa entry on adapter allocation failure

A NULL pointer dereference exists in the Linux kernel such that ice: iceadapter fails to release a reserved XArray entry when iceadapternew fails. As a result, subsequent insertions at the same index may return -EBUSY, which can lead to damage to system availability, integrity, and confidentialit...

kernel: wifi: cfg80211: fix use-after-free in cmp_bss()

A use after free vulnerbility exists in the linux kernel wifi module in the cmpbss function,an attacker could create a crafted payload to trigger, leading to damage availability and integrity of the system...

kernel: wifi: cfg80211: fix use-after-free in cmp_bss()

A use after free vulnerbility exists in the linux kernel wifi module in the cmpbss function,an attacker could create a crafted payload to trigger, leading to damage availability and integrity of the system...

Grav 路径遍历漏洞

Grav is an extensible CMS Content Management System for personal blogs, small content publishing platforms and one-page product presentations. Grav suffers from a path traversal vulnerability that stems from a path traversal sequence that causes an account YAML file to write to the wrong path. An...

OPENSUSE-SU-2025:15789-1 libecpg6-18.1-1.1 on GA media

These are all security issues fixed in the libecpg6-18.1-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15791-1 python315-3.15.0~a1-2.1 on GA media

These are all security issues fixed in the python315-3.15.0a1-2.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15790-1 python-mistralclient-doc-6.1.0-1.1 on GA media

These are all security issues fixed in the python-mistralclient-doc-6.1.0-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15792-1 python39-3.9.24-2.1 on GA media

These are all security issues fixed in the python39-3.9.24-2.1 package on the GA media of openSUSE Tumbleweed...

CVE-2025-58311

UAF vulnerability in the USB driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...

CVE-2025-58316

DoS vulnerability in the video-related system service module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-58303

UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-58309

Permission control vulnerability in the startup recovery module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...

CVE-2025-58312

Permission control vulnerability in the App Lock module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-58314

Vulnerability of accessing invalid memory in the component driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...

CVE-2025-58307

UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-64313

Denial of service DoS vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability...