The vulnerability of the nfs_return_empty_folio() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the nfsreturnemptyfolio function in the Linux operating system is related to errors during thread blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...

DEBIAN-CVE-2025-54121

Starlette is a lightweight ASGI Asynchronous Server Gateway Interface framework/toolkit, designed for building async web services in Python. In versions 0.47.1 and below, when parsing a multi-part form with large files greater than the default max spool size starlette will block the main thread t...

GHSA-2C2J-9GV5-CJ73 Starlette has possible denial-of-service vector when parsing large files in multipart forms

Summary When parsing a multi-part form with large files greater than the default max spool size starlette will block the main thread to roll the file over to disk. This blocks the event thread which means we can't accept new connections. Details Please see this discussion for details:...

The vulnerability of the Golang programming language, related to insufficient or incorrect blocking mechanisms, allows for situations where a violator can delete arbitrary directories.

The vulnerability of the Golang programming language is related to insufficient or incorrect blocking measures. Exploiting this vulnerability could allow a remote attacker to delete any directories at will...

The vulnerability of the blocking page of the UserGate Next-Generation Firewall (NGFW) allows a hacker to execute arbitrary code.

The vulnerability of the UserGate Next-Generation Firewall’s blocking page is related to insufficient validation of input data. Exploiting this vulnerability allows a hacker to execute arbitrary code when navigating through a specially crafted link...

CVE-2025-6714 Incorrect Handling of incomplete data may prevent mongoS from Accepting New Connections

MongoDB Server's mongos component can become unresponsive to new connections due to incorrect handling of incomplete data. This affects MongoDB when configured with load balancer support. This issue affects MongoDB Server v6.0 prior to 6.0.23, MongoDB Server v7.0 prior to 7.0.20 and MongoDB Serve...

The vulnerability of the pageattr.c component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the pageattr.c component in the Linux operating system’s kernel is related to the use of blocking code in a single-threaded, non-blocking context. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Linux operating system’s kernel, related to insufficient blocking mechanisms, allows attackers to trigger a Denial-of-Service Attack (DoS).

The vulnerability of the Linux operating system’s kernel is related to insufficient blocking mechanisms. Exploiting this vulnerability can allow an attacker to trigger a Denial-of-Service attack...

The vulnerability of the ondemand.c component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the ondemand.c component in the Linux operating system is related to insufficient blocking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

LoRAShield: Data-Free Editing Alignment for Secure Personalized LoRA Sharing

The proliferation of Low-Rank Adaptation LoRA models has democratized personalized text-to-image generation, enabling users to share lightweight models e.g., personal portraits on platforms like Civitai and Liblib. However, this "share-and-play" ecosystem introduces critical risks: benign LoRAs c...

CVE-2025-38141

In the Linux kernel, the following vulnerability has been resolved: dm: fix dmblkreportzones If dmgetlivetable returned NULL, dmputlivetable was never called. Also, it is possible that md-zonerevalidatemap will change while calling this function. Only read it once, so that we are always using the...

The vulnerability of the rtlwifi component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the rtlwifi component in the Linux operating system is related to insufficient blocking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the fs/nilfs2 component in the Linux operating system, which allows a hacker to trigger a service failure

The vulnerability of the fs/nilfs2 component in Linux operating systems is related to insufficient blocking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the megaraid_sas_base.c component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the megaraidsasbase.c component in the Linux operating system is related to insufficient blocking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerabilities of the components checkpoint.c, f2fs.h, and super.c in the Linux operating system’s kernel allow a hacker to trigger a service failure.

The vulnerability of the checkpoint.c, f2fs.h, and super.c components of the Linux operating system’s kernel is related to insufficient blocking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerabilities of components such as drivers, NVMe, and host kernels of the Linux operating system, which allow attackers to cause service failures

The vulnerability of components such as drivers, NVMe, and host kernels in the Linux operating system is related to errors during thread blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the fs/ntfs3/namei.c component of the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the fs/ntfs3/namei.c component in the Linux operating system is related to errors during thread blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the gf100.c component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the gf100.c component in the Linux operating system is related to insufficient blocking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Linux operating system’s kernel, related to insufficient blocking mechanisms, allows attackers to trigger a service failure.

The vulnerability of the Linux operating system’s kernel is related to insufficient blocking measures. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the net/mptcp component in Linux kernel, which allows a hacker to cause a service failure

The vulnerability of the net/mptcp component in Linux operating systems is related to insufficient blocking mechanisms. Exploiting this vulnerability can allow attackers to cause service failures...