GHSA-GFXP-F68G-8X78 LibYML: `libyml::string::yaml_string_extend` is unsound and unmaintained

In version 0.0.4, libyml::string::yamlstringextend was revised resulting in undefined behaviour, which is unsound. The GitHub project for libyml was archived after unsoundness issues were raised. If you rely on this crate, it is highly recommended switching to a maintained alternative. Recommende...

rcutorture: Fix rcutorture_one_extend_check() splat in RT kernels

...

SUSE CVE-2025-39745

In the Linux kernel, the following vulnerability has been resolved: rcutorture: Fix rcutortureoneextendcheck splat in RT kernels For built with CONFIGPREEMPTRT=y kernels, running rcutorture tests resulted in the following splat: 68.797425 rcutortureoneextendcheck during change: Current 0x1 To add...

DEBIAN-CVE-2025-39745

In the Linux kernel, the following vulnerability has been resolved: rcutorture: Fix rcutortureoneextendcheck splat in RT kernels For built with CONFIGPREEMPTRT=y kernels, running rcutorture tests resulted in the following splat: 68.797425 rcutortureoneextendcheck during change: Current 0x1 To add...

CVE-2025-39745

CVE-2025-39745 relates to the Linux kernel rcutorture code path in PREEMPT_RT builds. The issue manifests as a splat in rcutorture_one_extend_check() during RT testing due to an interaction with preempt_count/softirq handling; Debian/OSS and OSV/NVD records indicate the vulnerability has been res...

CVE-2025-39745

In the Linux kernel, the following vulnerability has been resolved: rcutorture: Fix rcutortureoneextendcheck splat in RT kernels For built with CONFIGPREEMPTRT=y kernels, running rcutorture tests resulted in the following splat: 68.797425 rcutortureoneextendcheck during change: Current 0x1 To add...

`libyml::string::yaml_string_extend` is unsound and unmaintained

In version 0.0.4, libyml::string::yamlstringextend was revised resulting in undefined behaviour, which is unsound. The GitHub project for libyml was archived after unsoundness issues were raised. If you rely on this crate, it is highly recommended switching to a maintained alternative. Recommende...

Linux Distros Unpatched Vulnerability : CVE-2018-16491

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A prototype pollution vulnerability was found in node.extend 1.1.7, 2.0.1 that allows an attacker to inject arbitrary properties onto Object.prototype...

Linux Distros Unpatched Vulnerability : CVE-2018-16492

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A prototype pollution vulnerability was found in module extend 2.0.2, 3.0.2 that allows an attacker to inject arbitrary properties onto Object.prototype...

MAL-2025-6968 Malicious code in vite-plugin-vue-extend-plugin (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in vite-plugin-vue-extend-plugin (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in vscode-extend (npm)

The package vscode-extend was found to contain malicious code...

MAL-2025-20087 Malicious code in express-uatraits-extend (npm)

The package express-uatraits-extend was found to contain malicious code...

Malicious code in express-uatraits-extend (npm)

The package express-uatraits-extend was found to contain malicious code...

Landray OA EKP 安全漏洞

Landray OA EKP Landray EKP is an office collaboration software from China Landray company. A security vulnerability exists in Landray OA EKP v16, which originates from an arbitrary download vulnerability in the /ui/sysuiextend/sysUiExtend.do component, which may result in obtaining the backend...

PT-2025-37204

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the rcutorture functionality. Specifically, the rcutorture one extend check function exhibited a splat in kernels built with CONFIG PREEMPT RT=y...

ExtendAttack: Attacking Servers of LRMs via Extending Reasoning

Large Reasoning Models LRMs have demonstrated promising performance in complex tasks. However, the resource-consuming reasoning processes may be exploited by attackers to maliciously occupy the resources of the servers, leading to a crash, like the DDoS attack in cyber. To this end, we propose a...

SUSE CVE-2022-50056

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix missing iop in ntfsreadmft There is null pointer dereference because iop == NULL. The bug happens because we don't initialize iop for records in $Extend...

DEBIAN-CVE-2022-50056

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix missing iop in ntfsreadmft There is null pointer dereference because iop == NULL. The bug happens because we don't initialize iop for records in $Extend...

UBUNTU-CVE-2022-50056

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix missing iop in ntfsreadmft There is null pointer dereference because iop == NULL. The bug happens because we don't initialize iop for records in $Extend...