3 matches found
VMware Spring Data Commons 安全漏洞
VMware Spring Data Commons is a data access abstraction framework developed by VMware, Inc. There is a security vulnerability in VMware Spring Data Commons. This vulnerability stems from the internal property lookup cache, which permanently retains strings provided by attackers as cache keys...
protobuf.js: Code generation gadget after prototype pollution
Summary protobufjs used plain objects with inherited prototypes for internal type lookup tables used by generated encode and decode functions. If Object.prototype had already been polluted, those lookup tables could resolve attacker-controlled inherited properties as valid protobuf type...
CVE-2025-21846
CVE-2025-21846 (Linux kernel) : The acct(2) path could trigger a NULL dereference when writing to a file that triggers an internal lookup (e.g., /sys/power/resume) after the task has exited. The fix reorganizes the code so the final write executes from a workqueue while preserving the caller’s cr...