CVE-2025-32439 pleezer allows resource exhaustion through uncollected hook script processes

pleezer is a headless Deezer Connect player. Hook scripts in pleezer can be triggered by various events like track changes and playback state changes. In versions before 0.16.0, these scripts were spawned without proper process cleanup, leaving zombie processes in the system's process table. Even...

CVE-2025-32439 pleezer allows resource exhaustion through uncollected hook script processes

pleezer is a headless Deezer Connect player. Hook scripts in pleezer can be triggered by various events like track changes and playback state changes. In versions before 0.16.0, these scripts were spawned without proper process cleanup, leaving zombie processes in the system's process table. Even...

CVE-2025-32439

CVE-2025-32439 affects pleezer prior to version 0.16.0. Root cause: hook scripts are spawned without proper child process cleanup, causing zombie processes to accumulate with each track change and playback event. This can lead to resource exhaustion as the system process table fills, potentially ...

CVE-2025-32439 pleezer allows resource exhaustion through uncollected hook script processes

pleezer is a headless Deezer Connect player. Hook scripts in pleezer can be triggered by various events like track changes and playback state changes. In versions before 0.16.0, these scripts were spawned without proper process cleanup, leaving zombie processes in the system's process table. Even...

The Efficiency Imperative: How Federal Agencies Can Streamline Cybersecurity Operations

With increasing scrutiny on government spending, federal agencies face mounting pressure to optimize IT budgets while fortifying cybersecurity defenses. However, the unchecked proliferation of security tools has led to inefficiencies, reduced visibility, and increasing total cost of ownership. A...

pleezer 安全漏洞

pleezer is a Deezer Connect player by the individual developer Roderick van Domburg. A security vulnerability exists in versions of pleezer prior to 0.16.0, which stems from a hook script that does not properly clean up processes, potentially leading to the accumulation of zombie processes...

Pleezer resource exhaustion through uncollected hook script processes

Impact Hook scripts in pleezer can be triggered by various events like track changes and playback state changes. In affected versions, these scripts were spawned without proper process cleanup, leaving zombie processes in the system's process table. Even during normal usage, every track change an...

GHSA-472W-7W45-G3W5 Pleezer resource exhaustion through uncollected hook script processes

Impact Hook scripts in pleezer can be triggered by various events like track changes and playback state changes. In affected versions, these scripts were spawned without proper process cleanup, leaving zombie processes in the system's process table. Even during normal usage, every track change an...

PT-2025-16387 · Pleezer · Pleezer

Name of the Vulnerable Software and Affected Versions: pleezer versions prior to 0.16.0 Description: The issue arises from hook scripts in pleezer being spawned without proper process cleanup, leading to zombie processes in the system's process table. This occurs with every track change and...

MGASA-2025-0129 Updated atop packages fix security vulnerability

atop through 2.11.0 allows local users to cause a denial of service e.g., assertion failure and application exit or possibly have unspecified other impact by running certain types of unprivileged processes while a different user runs atop. CVE-2025-31160...

Updated atop packages fix security vulnerability

atop through 2.11.0 allows local users to cause a denial of service e.g., assertion failure and application exit or possibly have unspecified other impact by running certain types of unprivileged processes while a different user runs atop. CVE-2025-31160...

CVE-2025-29792 Microsoft Office Elevation of Privilege Vulnerability

...

CVE-2024-45557

Memory corruption can occur when TME processes addresses from TZ and MPSS requests without proper validation...

CVE-2025-3032

Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks. This vulnerability affects Firefox 137 and Thunderbird 137...

SUSE CVE-2025-31160

atop through 2.11.0 allows local users to cause a denial of service e.g., assertion failure and application exit or possibly have unspecified other impact by running certain types of unprivileged processes while a different user runs atop...

PT-2025-14107

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 137 Thunderbird versions prior to 137 Description The issue involves the leaking of file descriptors from the fork server to web content processes, which could allow for privilege escalation attacks. Recommendations F...

Mozilla -- privilege escalation attack

[email protected] reports: Leaking of file descriptors from the fork server to web content processes could allow for privilege escalation attacks...

CVE-2025-31160

A flaw was found in Atop, through 2.11.0. This issue may allow local users to cause a denial of service, such as an assertion failure and application exit, or other unspecified impact by running certain types of unprivileged processes while a different user runs atop. Mitigation Mitigation for th...

Mozilla Firefox和Mozilla Firefox ESR 安全漏洞

Mozilla Firefox and Mozilla Firefox ESR are both products of the Mozilla Foundation in the U.S. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. A security vulnerability exists in Mozilla Firefox versions prior to 136.0.4 and...

DEBIAN-CVE-2025-31160

atop through 2.11.0 allows local users to cause a denial of service e.g., assertion failure and application exit or possibly have unspecified other impact by running certain types of unprivileged processes while a different user runs atop...