CVE-2025-53101 ImageMagick has Stack Buffer Overflow in image.c

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's magick mogrify command, specifying multiple consecutive %d format specifiers in a filename template causes internal pointer arithmetic to...

CVE-2022-50079 drm/amd/display: Check correct bounds for stream encoder instances for DCN303

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check correct bounds for stream encoder instances for DCN303 Why & How engid for DCN303 cannot be more than 1, since we have only two instances of stream encoders. Check the correct boundary condition for engine ...

CVE-2025-38062 genirq/msi: Store the IOMMU IOVA directly in msi_desc instead of iommu_cookie

In the Linux kernel, the following vulnerability has been resolved: genirq/msi: Store the IOMMU IOVA directly in msidesc instead of iommucookie The IOMMU translation for MSI message addresses has been a 2-step process, separated in time: 1 iommudmapreparemsi: A cookie pointer containing the IOVA...

SUSE-SU-2025:01601-1 Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506008 fixes several issues. The following security issues were fixed: - CVE-2024-53042: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow bsc1233678. - CVE-2024-53156: wifi: ath9k: add range check for connrspepid in htcconnectservice...

CVE-2025-24022 iTop server vulnerable to portal code injection

iTop is an web based IT Service Management tool. Prior to versions 2.7.12, 3.1.3, and 3.2.1, server code execution is possible through the frontend of iTop's portal. This is fixed in versions 2.7.12, 3.1.3 and 3.2.1...

CVE-2022-49854 mctp: Fix an error handling path in mctp_init()

In the Linux kernel, the following vulnerability has been resolved: mctp: Fix an error handling path in mctpinit If mctpneighinit return error, the routes resources should be released in the error handling path. Otherwise some resources leak...

CVE-2025-23157 media: venus: hfi_parser: add check to avoid out of bound access

In the Linux kernel, the following vulnerability has been resolved: media: venus: hfiparser: add check to avoid out of bound access There is a possibility that initcodecs is invoked multiple times during manipulated payload from video firmware. In such case, if codecscount can get incremented to...

DSA-5906-1 erlang - security update

Bulletin has no description...

Security vulnerability fixed in Firefox 137.0.2 — Mozilla

A race condition existed in nsHttpTransaction that could have been exploited to cause memory corruption, potentially leading to an exploitable condition...

CVE-2024-58082 media: nuvoton: Fix an error check in npcm_video_ece_init()

In the Linux kernel, the following vulnerability has been resolved: media: nuvoton: Fix an error check in npcmvideoeceinit When function offinddevicebynode fails, it returns NULL instead of an error code. So the corresponding error check logic should be modified to check whether the return value ...

CVE-2025-21828 wifi: mac80211: don't flush non-uploaded STAs

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't flush non-uploaded STAs If STA state is pre-moved to AUTHORIZED such as in IBSS scenarios and insertion fails, the station is freed. In this case, the driver never knew about the station, so trying to flush ...

CVE-2022-49314 tty: Fix a possible resource leak in icom_probe

In the Linux kernel, the following vulnerability has been resolved: tty: Fix a possible resource leak in icomprobe When pcireadconfigdword failed, call pcireleaseregions and pcidisabledevice to recycle the resource previously allocated...

PT-2025-19816 · Debian · Debian

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not explicitly provided. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

RHSA-2023:6402 Red Hat Security Advisory: containernetworking-plugins security and bug fix update

Bulletin has no description...

RHSA-2023:1981 Red Hat Security Advisory: pcs security and bug fix update

Bulletin has no description...

RHSA-2021:1006 Red Hat Security Advisory: OpenShift Container Platform 4.7.5 security and bug fix update

Bulletin has no description...

RHSA-2019:2606 Red Hat Security Advisory: kdelibs and kde-settings security and bug fix update

Bulletin has no description...

RHSA-2019:3023 Red Hat Security Advisory: ovirt-engine-ui-extensions security and bug fix update

Bulletin has no description...

SUSE-SU-2024:2780-1 Security update for patch

This update for patch fixes the following issues: - CVE-2019-20633: Fixed double-free/OOB read in pch.c bsc1167721...

SUSE-SU-2024:2379-1 Security update for jbigkit

This update for jbigkit fixes the following issues: - CVE-2022-1210: Fixed denial of service in TIFF File Handler bsc1198146...