CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations...

CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations...

CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations...

UBUNTU-CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations...

Security Bulletin: IBM MQ is vulnerable to Slowloris attack which is a type of denial-of-service (DoS) (CVE-2025-36128)

Summary IBM MQ is vulnerable to Slowloris attack which is a type of denial-of-service DoS. Vulnerability Details CVEID:CVE-2025-36128 DESCRIPTION: IBM MQ is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read operations. By conducting slowloris-type...

CVE-2025-60358

CVE-2025-60358 affects radare2 versions up to 5.9.8. The issue is a memory leak in the function _load_relocations, as described in multiple feeds (including USN-7842-1 and OSV/NVD/NASL entries). Reported impact across sources notes potential performance degradation and, in Ubuntu advisory framing...

CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations...

CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations...

Radare2 安全漏洞

Radare2 is a Libre reverse framework for Unix geeks open-sourced by Radare. A security vulnerability exists in Radare2 version 5.9.8 and earlier, which stems from a memory leak in the loadrelocations function...

EUVD-2025-34657

On the BIG-IP system, undisclosed endpoints that contain static non-sensitive information are accessible to an unauthenticated remote attacker through the Configuration utility. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2025-39991 wifi: ath11k: fix NULL dereference in ath11k_qmi_m3_load()

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix NULL dereference in ath11kqmim3load If ab-fw.m3data points to data, then fw pointer remains null. Further, if m3mem is not allocated, then fw is dereferenced to be passed to ath11kerr function. Replace fw-size b...

CVE-2025-39991

CVE-2025-39991 affects the Linux kernel’s wifi/ath11k driver. The root cause is a potential NULL dereference in ath11k_qmi_m3_load() when ab->fw.m3_data points to data and m3_mem is not allocated, causing fw to be dereferenced in ath11k_err. The patch fixes this by replacing fw->size with m...

CVE-2025-39991 wifi: ath11k: fix NULL dereference in ath11k_qmi_m3_load()

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix NULL dereference in ath11kqmim3load If ab-fw.m3data points to data, then fw pointer remains null. Further, if m3mem is not allocated, then fw is dereferenced to be passed to ath11kerr function. Replace fw-size b...

[SECURITY] Fedora 42 Update: mirrorlist-server-3.0.8-1.fc42

The mirrorlist-server uses the data created by MirrorManager2 https://github.com/fedora-infra/mirrormanager2 to answer client request for the "best" mirror. This implementation of the mirrorlist-server is written in Rust. The original version of the mirrorlist-server was part of the MirrorManager...

[SECURITY] Fedora 43 Update: mirrorlist-server-3.0.8-1.fc43

The mirrorlist-server uses the data created by MirrorManager2 https://github.com/fedora-infra/mirrormanager2 to answer client request for the "best" mirror. This implementation of the mirrorlist-server is written in Rust. The original version of the mirrorlist-server was part of the MirrorManager...

Microsoft Windows 日志信息泄露漏洞

Microsoft Windows is a suite of operating systems used by Microsoft Corporation USA for personal devices. A log information disclosure vulnerability exists in Microsoft Windows ETL Channel, which can be exploited by an attacker to obtain sensitive information...

Malicious Package

Overview webpack-load-css-branch is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packa...

Malicious code in webpack-load-css-branch (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0fdf10edf9a7aa5d5eec0a8fea00190c4abb0beb6c3701a205d9d7527332e15c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

EUVD-2025-33928

Malicious code in webpack-load-css-branch npm...

MAL-2025-48349 Malicious code in webpack-load-css-branch (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0fdf10edf9a7aa5d5eec0a8fea00190c4abb0beb6c3701a205d9d7527332e15c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...