371 matches found
CVE-2025-68742 bpf: Fix invalid prog->stats access when update_effective_progs fails
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix invalid prog-stats access when updateeffectiveprogs fails Syzkaller triggers an invalid memory access issue following fault injection in updateeffectiveprogs. The issue can be described as follows: cgroupbpfdetach...
CVE-2025-68742 bpf: Fix invalid prog->stats access when update_effective_progs fails
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix invalid prog-stats access when updateeffectiveprogs fails Syzkaller triggers an invalid memory access issue following fault injection in updateeffectiveprogs. The issue can be described as follows: cgroupbpfdetach...
CVE-2025-68742
CVE-2025-68742: In the Linux kernel, a fault injection in update_effective_progs can cause a BPF prog to be replaced with a dummy prog, leading to a NULL dereference when a softirq runs and accesses prog->stats. The fix prevents updating stats if stats is NULL, avoiding the invalid memory acce...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from accessing invalid prog-stats when updateeffectiveprogs fails, which could result in invalid memory accesses...
PT-2025-53008
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw where an invalid memory access can occur following fault injection in the update effective progs function. This issue arises when fault injection causes...
Missing Release of Memory after Effective Lifetime
Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime due to improper cleanup of threads in multithreaded environments. An attacker can cause resource exhaustion and degrade application performance by repeatedly initiating requests in a...
CVE-2025-64734
Missing Release of Resource after Effective Lifetime CWE-772 in the T21 Reader allows an attacker with physical access to the Reader to perform a denial-of-service attack against that specific reader, preventing cardholders from badging for entry. This issue affects Command Centre Server: 9.30...
Siemens SIMATIC S7-1500 Missing Release of Memory after Effective Lifetime (CVE-2024-56779)
nfsd: fix nfs4openowner leak when concurrent nfsd4open occur The action force umountumount -f will attempt to kill all rpctask even umount operation may ultimately fail if some files remain open. Consequently, if an action attempts to open a file, it can potentially send two rpctask to nfs server...
Siemens SIMATIC S7-1500 Missing Release of Memory after Effective Lifetime (CVE-2023-5156)
A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...
EUVD-2025-116967
Malicious code in effectiveptarmiganz3n npm...
EUVD-2025-117422
Malicious code in effective-rose-catshark npm...
EUVD-2025-77014
Malicious code in effectiveorangutan-silentdev npm...
EUVD-2025-79352
Malicious code in effectivejackalz3n npm...
EUVD-2025-64370
Malicious code in effectivelandfowlrequirement npm...
EUVD-2025-64371
Malicious code in effectiveelkz3n npm...
EUVD-2025-64368
Malicious code in effectiveostrichz3n npm...
EUVD-2025-54699
Malicious code in effective-azure-alpaca npm...
EUVD-2025-54696
Malicious code in effective-peach-gayal npm...
EUVD-2025-54695
Malicious code in effective-plum-frog npm...
EUVD-2025-54700
Malicious code in effective-aquamarine-boa npm...