kernel: perf/x86/intel: Fix crash in icl_update_topdown_event()

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Fix crash in iclupdatetopdownevent The perffuzzer found a hard-lockup crash on a RaptorLake machine: Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000 CPU: 23 UID: 0 PID: 0 Comm: swapper/23...

EUVD-2025-20924

Malicious code in bioql PyPI...

DEBIAN-CVE-2025-38322

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Fix crash in iclupdatetopdownevent The perffuzzer found a hard-lockup crash on a RaptorLake machine: Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000 CPU: 23 UID: 0 PID: 0 Comm: swapper/23...

CVE-2025-38322 perf/x86/intel: Fix crash in icl_update_topdown_event()

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Fix crash in iclupdatetopdownevent The perffuzzer found a hard-lockup crash on a RaptorLake machine: Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000 CPU: 23 UID: 0 PID: 0 Comm: swapper/23...

K000148833: Intel Processor (SPP) vulnerabilities CVE-2024-36242 and CVE-2024-38660

Security Advisory Description CVE-2024-36242 Protection mechanism failure in the SPP for some IntelR Processors may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2024-38660 Protection mechanism failure in the SPP for some IntelR XeonR processor...

CVE-2024-38660

Protection mechanism failure in the SPP for some IntelR XeonR processor family E-Core may allow an authenticated user to potentially enable escalation of privilege via local access...

Phpdisk E_Core 3.0 suffers from SQL injection vulnerability

PHPDisk E-Core Enterprise Office Series is a set of enterprise network office, enterprise paperless office and document management system for the network cloud storage disk system. Phpdisk ECore 3.0 'uckey' SQL injection vulnerability. Allow attackers to exploit the vulnerability to change any...

Code execution vulnerability in Phpdisk E_Core includes/dosafe.php file

PHPDisk E-Core Enterprise Office Series is a set of enterprise network office, enterprise paperless office and document management system for the network cloud storage disk system. Phpdisk ECore version 3.0 includes/dosafe.php file has a code execution vulnerability. Allows an attacker to remotel...

PHPDisk E-Core phpdisk_del_process.php 代码执行

phpdiskdelprocess未对fileid做过滤,导致文件删除,文件删除日志delfilelog可写入代码,并执行。需要开启registerglobals在php5.3废弃5.4移除,代码执行需要关闭shortopentag，影响范围小。 0 2.5 更新到最新版本...

PHPDisk E-Core 补丁过滤不严继续重装

简要描述： 过滤不严。 详细说明： WooYun: PHPDisk E-Core 漏洞 可注入 可重装 鸡肋可getshell 上个地址。 今天看到发布补丁了 去下载来看看。 在phpdiskdelprocess.php中 parsestrpdencode$str,'DECODE'; $pp = iconv'utf-8','gbk',$pp; $arr = explode'.',$pp; $fileid = int$fileid; $filename = $db-escape$filename; $srcfile = $arr0.getrealext$arr1; 这里官方的修复方式是...