CVE-2025-68303

In the Linux kernel, the following vulnerability has been resolved: platform/x86: intel: punitipc: fix memory corruption This passes the address of the pointer "&punitipcdev" when the intent was to pass the pointer itself "punitipcdev" without the ampersand. This means that the:...

CVE-2025-68249

In the Linux kernel, the following vulnerability has been resolved: most: usb: hdmprobe: Fix calling putdevice before device initialization The early error path in hdmprobe can jump to errfreemdev before &mdev-dev has been initialized with deviceinitialize. Calling putdevice&mdev-dev there trigge...

CVE-2025-68291

The CVE-2025-68291 issue affects the Linux kernel MPTCP path: in mptcp_do_fastclose(), rcv_mss was not initialised before triggering tcp_send_active_reset(), leading to a divide-by-zero in __tcp_select_window() for MPTCP sockets. The fix mirrors a prior bare-TCP patch by initialising rcv_mss (to ...

CVE-2025-68233

In the Linux kernel, the following vulnerability has been resolved: drm/tegra: Add call to putpid Add a call to putpid corresponding to gettaskpid. host1xmemorycontextalloc does not take ownership of the PID so we need to free it here to avoid leaking. [email protected]: reword commit message...

CVE-2025-62863

CVE-2025-62863 concerns AmpereOne processors (AC03 before 3.5.9.3, AC04 before 4.4.5.2, M before 5.4.5.1). The issue arises from an incorrectly formed System Management Call (SMC) to the UEFI-MM PCIe driver, which could enable an out-of-bounds write in the PCIe driver’s S-EL0 address space. Repor...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an incorrect call to mxcisivideocleanupstreaming, which could result in the release of a stream queue...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a call to putdevice in most:usb:hdmprobe before device initialization, which may result in a kernel warning...

PT-2025-51756

Name of the Vulnerable Software and Affected Versions AmpereOne AC03 versions prior to 3.5.9.3 AmpereOne AC04 versions prior to 4.4.5.2 AmpereOne M versions prior to 5.4.5.1 Description The software contains a flaw where an incorrectly formed System Management Call SMC to the UEFI-MM MMCommunicat...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a call to a function in an atomic context that could cause a sleep, potentially leading to system instabilit...

Ampere Computing多款产品 安全漏洞

Ampere Computing AmpereOne AC03 and others are a processor chip from Ampere Computing, USA. A security vulnerability exists in various Ampere Computing products that stems from an SMC call format error that could result in out-of-bounds reads or writes. The following products and versions are...

CVE-2025-62863

Ampere AmpereOne AC03 devices before 3.5.9.3, AmpereOne AC04 devices before 4.4.5.2, and AmpereOne M devices before 5.4.5.1 allow an incorrectly formed SMC call to UEFI-MM PCIe driver that could result in an out-of-bounds write within PCIe driver’s S-EL0 address space...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an incorrect call to kfree to free a rdev managed by devres, which could result in a double release...

PT-2025-51755

Name of the Vulnerable Software and Affected Versions AmpereOne AC03 versions prior to 3.5.9.3 AmpereOne AC04 versions prior to 4.4.5.2 AmpereOne M versions prior to 5.4.5.1 Description The software contains a flaw where an incorrectly formed System Management Call SMC to the UEFI-MM PCIe driver...

PT-2025-51639

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's SMB client related to an incomplete backport in the cfids invalidation worker function. A previous commit aimed to address a potential use-after-free...

CVE-2025-62862

CVE-2025-62862 concerns AmpereOne AC03 (before 3.5.9.3), AC04 (before 4.4.5.2), and M (before 5.4.5.1). The root cause is an incorrectly formed SMC call to the UEFI-MM Boot Error Record Table driver, enabling (1) out-of-bounds reads that may leak Secure-EL0 information to Non-Secure state, or (2)...

CVE-2025-62863

Ampere AmpereOne AC03 devices before 3.5.9.3, AmpereOne AC04 devices before 4.4.5.2, and AmpereOne M devices before 5.4.5.1 allow an incorrectly formed SMC call to UEFI-MM PCIe driver that could result in an out-of-bounds write within PCIe driver’s S-EL0 address space...

PT-2025-51656

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the NFS implementation. Specifically, when the TLS security policy is set to RPC XPRTSEC TLS X509, the nfs match client function does not proper...

CVE-2025-14038

EDB Hybrid Manager contains a flaw that allows an unauthenticated attacker to directly access certain gRPC endpoints. This could allow an attacker to read potentially sensitive data or possibly cause a denial-of-service by writing malformed data to certain gRPC endpoints. This flaw has been...

CVE-2025-14038

EDB Hybrid Manager is affected by an unauthenticated-access flaw that allows direct access to certain gRPC endpoints due to a misconfiguration in the Istio Gateway, bypassing authentication and authorization. This can lead to potential data disclosure or denial-of-service by sending malformed dat...

EnterpriseDB Hybrid Manager - LTS 安全漏洞

EnterpriseDB Hybrid Manager - LTS is a hybrid cloud management software from EnterpriseDB, Inc. A security vulnerability exists in EnterpriseDB Hybrid Manager - LTS that originates from unauthorized access to a gRPC endpoint and could result in a data disclosure or denial of service...