DEBIAN-CVE-2025-40205

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfsencodefh The function btrfsencodefh does not properly account for the three cases it handles. Before writing to the file handle fh, the function only returns to the user...

CVE-2025-40205

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfsencodefh The function btrfsencodefh does not properly account for the three cases it handles. Before writing to the file handle fh, the function only returns to the user...

CVE-2025-12890

CVE-2025-12890 affects Zephyr-related Bluetooth peripherals. The public data describe an improper handling of a malformed Connection Request when the interval is 1 and the chM mask is 0x7CFFFFFFFF, which triggers a crash and renders the peripheral non-connectable. This vulnerability is described ...

CVE-2025-47370

Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan...

CVE-2025-47370

Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan...

CVE-2025-47370

Technical details, affected product/versions, root cause, and fixes for CVE-2025-47370 are not publicly provided in the supplied documents. Monitor for updates from vendors/security bulletins.

PT-2025-44933

Name of the Vulnerable Software and Affected Versions Bluetooth affected versions not specified Description A temporary denial-of-service condition can occur when a remote device sends an invalid connection request during a Bluetooth Low Energy LE connectable scan. This issue is related to an...

Advice for manufacturers on the coming PSTI regulation

TL;DR PSTI: The UK Product Security and Telecommunications Infrastructure Product Security Act Regulations effective from 29 April 2024 Assess how, where, why, and when you may be affected Review supply chain and in-house teams for compliance readiness Specific obligations for manufacturers,...

Opera MyFlaw Bug Could Let Hackers Run ANY File on Your Mac or Windows

Cybersecurity researchers have disclosed a now-patched security flaw in the Opera web browser for Microsoft Windows and Apple macOS that could be exploited to execute any file on the underlying operating system. The remote code execution vulnerability has been codenamed MyFlaw by the Guardio Labs...

Denial Of Service (DoS)

github.com/gliderlabs/connectable is vulnerable to denial of service DoS attacks. The vulnerability exists because it does not contain a timeout when waiting on the other system it wishes to connect to...

JVN#70599814 I-O DATA DEVICE HDL-F series cross-site request forgery vulnerability

The HDL-F series products provided by I-O DATA DEVICE, INC. are LAN connectable hard disk drives. Configuration of these devices are done through a web-based interface. This web interface is vulnerable to cross-site request forgery. Impact If a user views a malicious web page while logged into th...