CVE-2025-1934

It was possible to interrupt the processing of a RegExp bailout and run additional JavaScript, potentially triggering garbage collection when the engine was not expecting it. This vulnerability affects Firefox 136, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8...

Vulnerability of the functions amdgpu_vkms_prepare_fb() and amdgpu_vkms_cleanup_fb() (drivers/gpu/drm/amd/amdgpu/amdgpu_vkms.c) in the Linux operating system kernel, allowing a hacker to cause service interruptions

The vulnerabilities of the functions amdgpuvkmspreparefb and amdgpuvkmscleanupfb drivers/gpu/drm/amd/amdgpu/amdgpuvkms.c in the Linux operating system’s kernel are related to pointer manipulation. Exploiting these vulnerabilities can allow an attacker to cause service interruptions...

The vulnerability of the httpGetEnv() function (userRpm/WanDynamicIpV6CfgRpm.htm) in TP-Link TL-WR841ND router software allows a attacker to cause a service failure.

The vulnerability of the httpGetEnv function userRpm/WanDynamicIpV6CfgRpm.htm in the TP-Link TL-WR841ND router software is related to buffer overflows caused by improper cleaning or resource release when processing the gw parameter. Exploiting this vulnerability allows a remote attacker to cause...

The vulnerability of the Internet Connection Sharing (ICS) function in Windows operating systems allows a hacker to cause a service failure.

The vulnerability of the Internet Connection Sharing ICS function in Windows operating systems is related to uncontrolled resource consumption. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Internet Connection Sharing (ICS) function in Windows operating systems allows a hacker to cause a service failure.

The vulnerability of the Internet Connection Sharing ICS function in Windows operating systems is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of macOS operating systems relates to incorrect session expiration times, which allows attackers to trigger a service failure.

The vulnerability of macOS operating systems is related to incorrect session duration settings. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the WebKit component in iOS operating systems, iPadOS, tvOS, macOS, watchOS, visionOS, and the Safari browser allows a hacker to trigger a service failure.

The vulnerability of the WebKit component in iOS, iPadOS, tvOS, macOS, watchOS, visionOS operating systems, and the Safari browser is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

Vulnerability of the Server component: The Oracle MySQL Server database management system’s packaging, which allows a hacker to trigger a service failure.

The vulnerability of the Oracle MySQL Server database management system component involves the exhaustion of memory resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through network packets...

The vulnerability of the SSL-VPN portal for FortiOS operating systems allows a hacker to induce a service failure.

The vulnerability of the SSL-VPN portal for FortiOS operating systems is related to the assignment of the zero pointer. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

The vulnerability of the command-line image editing tool Sips in macOS operating systems allows a hacker to trigger a service failure.

The vulnerability of the command-line image editing tool Sips in macOS operating systems is related to the unlimited distribution of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

Vulnerability of the Server: Thread Pooling component of the Oracle MySQL Server database management system, which allows attackers to cause service interruptions.

The vulnerability of the Server:Thread Pooling component of the Oracle MySQL Server database management system is related to the exhaustion of memory resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through network packets...

Vulnerability of the Server: Optimizer component of the MySQL database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server: Optimizer component of the MySQL database management system is related to the improper assignment of permissions for a critical resource. Exploiting this vulnerability may allow an attacker to cause service interruptions remotely...

The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the Thunderbird email client, are related to the lack of security measures for SQL query structures, allowing attackers to trigger a service failure.

The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the email client Thunderbird, are related to the lack of security measures for handling SQL query structures. Exploiting these vulnerabilities can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the GSL mathematical library, related to copying buffers without checking the input data, allows a violator to trigger a service failure.

The vulnerability of the GSL mathematical library relates to the copying of buffers without checking the input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

Vulnerability of Firefox and Firefox ESR web browsers, as well as the Thunderbird email client, related to writing beyond the buffer limit, allowing attackers to trigger a service failure.

The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the Thunderbird email client, are related to buffer overflow attacks. Exploiting these vulnerabilities can allow an attacker to cause service interruptions remotely...

Vulnerability of components fs/ext4/inode.c and fs/ext4/super.c in the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability in the fs/ext4/inode.c and fs/ext4/super.c components of the Linux operating system’s kernel relates to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks

DeepSeek, the Chinese AI startup that has captured much of the artificial intelligence AI buzz in recent days, said it's restricting registrations on the service, citing malicious attacks. "Due to large-scale malicious attacks on DeepSeek's services, we are temporarily limiting registrations to...

The vulnerabilities of the QuTS operating systems and QTS network devices from Qnap are related to errors in the certificate validation process, which allow attackers to trigger service interruptions.

The vulnerability of the QuTS operating systems and QTS network devices involves errors in the certificate validation process. Exploiting this vulnerability allows a malicious actor to cause service failures...

The vulnerability of the InnoDB component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the InnoDB component in the Oracle MySQL Server database management system is related to deficiencies in the authentication process due to incorrect processing of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

Vulnerability of the Server component: Security: Privileges of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server component: Security: Privileges of the Oracle MySQL Server database management system is related to deficiencies in the authentication mechanism. Exploiting this vulnerability can allow an attacker to cause service interruptions...