CVE-2025-63929

A null pointer dereference vulnerability exists in airpig2011 IEC104 thru Commit be6d841 2019-07-08. When multiple threads enqueue elements concurrently via IEC10XPrioEnQueue, the function may dereference a null or freed queue pointer, resulting in a segmentation fault and potential...

CVE-2025-63929

The CVE-2025-63929 vulnerability affects airpig2011 IEC104 prior to Commit be6d841 (2019-07-08). A null pointer dereference can occur when multiple threads concurrently enqueue elements via IEC10X_PrioEnQueue, potentially dereferencing a null or freed queue pointer and causing a segmentation faul...

kernel: virtio/vsock: Fix accept_queue memory leak

In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Fix acceptqueue memory leak As the final stages of socket destruction may be delayed, it is possible that virtiotransportrecvlisten will be called after the acceptqueue has been flushed, but before the SOCKDONE flag...

kernel: pfifo_tail_enqueue: Drop new packet when sch->limit == 0

In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0 Expected behaviour: In case we reach scheduler's limit, pfifotailenqueue will drop a packet in scheduler's queue and decrease scheduler's qlen by one. Then, pfifotailenqueue...

CVE-2025-12098

CVE-2025-12098 affects Academy LMS Pro (WordPress plugin) up to version 3.3.8, exposing sensitive data via enqueue_social_login_script. Unauthenticated attackers could exfiltrate secrets (e.g., Facebook App Secret) when Facebook Social Login is enabled. Mitigation: update to 3.3.9 or later (patch...

CVE-2025-12098 Academy LMS Pro <= 3.3.8 - Unauthenticated Sensitive Information Exposure via 'enqueue_social_login_script'

The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.8 via the 'enqueuesocialloginscript' function. This makes it possible for unauthenticated attackers to extract...

SUSE CVE-2023-53724

In the Linux kernel, the following vulnerability has been resolved: mfd: pcf50633-adc: Fix potential memleak in pcf50633adcasyncread req is allocated in pcf50633adcasyncread, but adcenqueuerequest could fail to insert the req into queue. We need to check the return value and free it in the case o...

DEBIAN-CVE-2023-53724

In the Linux kernel, the following vulnerability has been resolved: mfd: pcf50633-adc: Fix potential memleak in pcf50633adcasyncread req is allocated in pcf50633adcasyncread, but adcenqueuerequest could fail to insert the req into queue. We need to check the return value and free it in the case o...

CVE-2023-53724

In the Linux kernel, the following vulnerability has been resolved: mfd: pcf50633-adc: Fix potential memleak in pcf50633adcasyncread req is allocated in pcf50633adcasyncread, but adcenqueuerequest could fail to insert the req into queue. We need to check the return value and free it in the case o...

UBUNTU-CVE-2023-53724

In the Linux kernel, the following vulnerability has been resolved: mfd: pcf50633-adc: Fix potential memleak in pcf50633adcasyncread req is allocated in pcf50633adcasyncread, but adcenqueuerequest could fail to insert the req into queue. We need to check the return value and free it in the case o...

CVE-2023-53724

The CVE-2023-53724 issue affects the Linux kernel mfd: pcf50633-adc driver. The root cause was a potential memleak where req, allocated in pcf50633_adc_async_read(), could not be freed if adc_enqueue_request() failed to enqueue it. The fix ensures the return value is checked and the allocated req...

CVE-2023-53724 mfd: pcf50633-adc: Fix potential memleak in pcf50633_adc_async_read()

In the Linux kernel, the following vulnerability has been resolved: mfd: pcf50633-adc: Fix potential memleak in pcf50633adcasyncread req is allocated in pcf50633adcasyncread, but adcenqueuerequest could fail to insert the req into queue. We need to check the return value and free it in the case o...

EUVD-2017-9598

Malware in sbrugna...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986402)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986402 advisory. In the Linux kernel, the following vulnerability has been resolved: net: netlink: afnetlink: Prevent empty skb by adding a check on len. Adding a check on len...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414336)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414336 advisory. atmtcenqueue in net/sched/schatm.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service because of type confusion non-negative numbers can...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414393)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414393 advisory. A flaw was found in the Linux kernels networking code. A use-after-free was found in the way the schsfb enqueue function used the socket buffer SKB cb field after th...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-393406)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-393406 advisory. In the Linux kernel, the following vulnerability has been resolved: netem: fix return value if duplicate enqueue fails There is a bug in netemenqueue introduced by...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986582)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986582 advisory. In the Linux kernel, the following vulnerability has been resolved: net: netlink: afnetlink: Prevent empty skb by adding a check on len. Adding a check on len...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-385762)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-385762 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: netem: account for backlog updates from child qdisc In general, 'qlen' of any classful...

EUVD-2025-28946

Malicious code in bioql PyPI...