The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to the disclosure of information in debugging messages, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the disclosure of information in debugging messages. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

Gitlab -- Vulnerabilities

Gitlab reports: Denial of service via CI pipelines Unintentionally authorizing sensitive actions on users behalf IP Restriction Bypass through GraphQL Subscription Unauthorized users can list the number of confidential issues Debugging Information Disclosed...

DEBIAN-CVE-2025-21912

In the Linux kernel, the following vulnerability has been resolved: gpio: rcar: Use rawspinlock to protect register access Use rawspinlock in order to fix spurious messages about invalid context when spinlock debugging is enabled. The lock is only used to serialize register access. 4.239592...

UBUNTU-CVE-2025-21912

In the Linux kernel, the following vulnerability has been resolved: gpio: rcar: Use rawspinlock to protect register access Use rawspinlock in order to fix spurious messages about invalid context when spinlock debugging is enabled. The lock is only used to serialize register access. 4.239592...

CVE-2025-21912

CVE-2025-21912 describes a Linux kernel issue in the Renesas GPIO driver (gpio_rcar) where register access was not properly protected, leading to spurious “Invalid wait context” messages when spinlock debugging is enabled. The patch switches protection to a raw_spinlock to serialize register acce...

USN-7382-1: Linux kernel (OEM) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - x86...

USN-7382-1 linux-oem-6.11 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - x86...

USN-7380-1 linux-lowlatency vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - x86...

CVE-2022-49761 btrfs: always report error in run_one_delayed_ref()

In the Linux kernel, the following vulnerability has been resolved: btrfs: always report error in runonedelayedref Currently we have a btrfsdebug for runonedelayedref failure, but if end users hit such problem, there will be no chance that btrfsdebug is enabled. This can lead to very little usefu...

CVE-2022-49761 btrfs: always report error in run_one_delayed_ref()

In the Linux kernel, the following vulnerability has been resolved: btrfs: always report error in runonedelayedref Currently we have a btrfsdebug for runonedelayedref failure, but if end users hit such problem, there will be no chance that btrfsdebug is enabled. This can lead to very little usefu...

CVE-2022-49761

CVE-2022-49761 - Linux kernel (btrfs) details Affected: Linux kernel with btrfs subsystem; function run_one_delayed_ref() path in the delayed refs workflow. Root cause/what changed: The patch changes error reporting from btrfs_debug() to btrfs_err(), adds extra context (logical bytenr, num_bytes,...

CVE-2022-49761

In the Linux kernel, the following vulnerability has been resolved: btrfs: always report error in runonedelayedref Currently we have a btrfsdebug for runonedelayedref failure, but if end users hit such problem, there will be no chance that btrfsdebug is enabled. This can lead to very little usefu...

USN-7379-1 linux, linux-aws, linux-azure, linux-gcp, linux-hwe-6.11, linux-oracle, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - x86...

CVE-2025-29932

In JetBrains GoLand before 2025.1 an XXE during debugging was possible...

CVE-2025-29932

In JetBrains GoLand before 2025.1 an XXE during debugging was possible...

CVE-2025-29932

In JetBrains GoLand before 2025.1 an XXE during debugging was possible...

CVE-2025-29932

In JetBrains GoLand before 2025.1 an XXE during debugging was possible...

CVE-2025-29932

JetBrains GoLand prior to 2025.1 is affected by CVE-2025-29932: an XXE during debugging allows reading files via XML external entities. The vulnerability concerns the GoLand IDE (Go development) and is documented across multiple sources; no remediation details are provided in the supplied documen...

Exploit for CVE-2025-29927

Introduction By manipulating the x-middleware-subrequest req...

[SECURITY] Fedora 42 Update: radare2-5.9.8-7.fc42

The radare2 is a reverse-engineering framework that is multi-architecture, multi-platform, and highly scriptable. Radare2 provides a hexadecimal editor, wrapped I/O, file system support, debugger support, diffing between two functions or binaries, and code analysis at opcode, basic block, and...