pocs

Fragnesia Abstract https://github.com/user-attachment...

CVE-2025-39929

CVE-2025-39929 affects the Linux kernel SMB client code, specifically a leak in smbdirect_recv_io within smbd_negotiate() error path. The vulnerability is mapped to a LOCAL attack, with MEDIUM overall CVSS (base 5.5) and HIGH impact on availability. The description in the initial document notes t...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: dm cache: Fixed the issue where uninitialized delayedwork objects were flushed during a cachectr error. An unexpected WARN message may occur when cache creation fails, caused by destroying the uninitialized delayedwork waker i...

Simple macOS kernel extension fuzzing in userspace with IDA and TinyInst

Posted by Ivan Fratric, Google Project Zero Recently, one of the projects I was involved in had to do with video decoding on Apple platforms, specifically AV1 decoding. On Apple devices that support AV1 video format starting from Apple A17 iOS / M3 macOS, decoding is done in hardware. However,...