151 matches found
CVE-2022-23640
Excel-Streaming-Reader is an easy-to-use implementation of a streaming Excel reader using Apache POI. Prior to xlsx-streamer 2.1.0, the XML parser that was used did apply all the necessary settings to prevent XML Entity Expansion issues. Upgrade to version 2.1.0 to receive a patch. There is no...
BELL-CVE-2025-38490
Bulletin has no description...
CVE-2025-50059
...
CVE-2025-30752
...
CVE-2025-30747
...
CVE-2025-30739
...
BELL-CVE-2025-23144
Bulletin has no description...
BELL-CVE-2025-22026
Bulletin has no description...
CVE-2025-30737
...
CVE-2025-30707
...
CVE-2025-30689
...
CVE-2025-30686
Affected product: Oracle Hospitality Simphony (part of Oracle Food and Beverage Applications) with EMC component. Vulnerable versions: 19.1–19.7. Root cause: flaw in EMC within Simphony that enables a low-privilege, network-access user (HTTP) to access or alter data and cause partial DOS. Impact:...
CVE-2025-21840
In the Linux kernel, the following vulnerability has been resolved: thermal/netlink: Prevent userspace segmentation fault by adjusting UAPI header The intel-lpmd tool 1, which uses the THERMALGENLATTRCPUCAPABILITY attribute to receive HFI events from kernel space, encounters a segmentation fault...
CVE-2022-49451
In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Fix list protocols enumeration in the base protocol While enumerating protocols implemented by the SCMI platform using BASEDISCOVERLISTPROTOCOLS, the number of returned protocols is currently validated in an...
CVE-2025-21712
In the Linux kernel, the following vulnerability has been resolved: md/md-bitmap: Synchronize bitmapgetstats with bitmap lifetime After commit ec6bb299c7c3 "md/md-bitmap: add 'syncsize' into struct mdbitmapstats", following panic is reported: Oops: general protection fault, probably for...
CVE-2024-57981
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix NULL pointer dereference on certain command aborts If a command is queued to the final usable TRB of a ring segment, the enqueue pointer is advanced to the subsequent link TRB and no further. If the command is late...
CVE-2025-21742
In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: use static NDP16 location in URB Original code allowed for the start of NDP16 to be anywhere within the URB based on the wNdpIndex value in NTH16. Only the start position of NDP16 was checked, so it was possible f...
CVE-2024-57997
In the Linux kernel, the following vulnerability has been resolved: wifi: wcn36xx: fix channel survey memory allocation size KASAN reported a memory allocation issue in wcn-chansurvey due to incorrect size calculation. This commit uses kcalloc to allocate memory for wcn-chansurvey, ensuring prope...
CVE-2024-58015
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix for out-of bound access error Selfgen stats are placed in a buffer using printarraytobufindex function. Array length parameter passed to the function is too big, resulting in possible out-of bound memory error...
CVE-2024-57999
In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW Power Hypervisor can possibily allocate MMIO window intersecting with Dynamic DMA Window DDW range, which is over 32-bit addressing. These MMIO pages needs to be...