Linux Distros Unpatched Vulnerability : CVE-2025-38455

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Reject SEV-ES intra host migration if vCPU creation is in-flight Reject migration ...

The vulnerability of the NVIDIA Virtual GPU Manager driver allows a hacker to gain unauthorized access to protected information, increase their privileges, execute arbitrary code, or cause a service failure.

The vulnerability of the NVIDIA Virtual GPU Manager driver stems from a race condition. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, increase their privileges, execute arbitrary code, or cause service failures...

Linux Distros Unpatched Vulnerability : CVE-2025-38195

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LoongArch: Fix panic caused by NULL-PMD in hugepteoffset ERROR INFO: CPU 25 Unable to handle kernel paging request at virtual address 0x0 ... Call Trace:...

Linux Distros Unpatched Vulnerability : CVE-2024-23337

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jq is a command-line JSON processor. In versions up to and including 1.7.1, an integer overflow arises when assigning value using an index of 2147483647, the...

Vulnerabilities fixed in Trend Micro Apex One

Trend Micro has fixed vulnerabilities in the Apex One management console. The vulnerability in the management console allows a remote attacker without authentication to arbitrarily upload code and execute commands on affected installations. Both CVEs are similar, it just affects different CPU...

CVE-2024-45183

An issue was discovered in Samsung Mobile Processor Exynos 2100, 1280, 2200, 1330, 1380, 1480, and 2400. A lack of a JPEG length check leads to an out-of-bound write...

CLSA-2025-1754381655 microcode_ctl: Fix of 6 CVEs

Update Intel CPU microcode to 20250512: - Fixes CVE-2025-20012, CVE-2025-20623, CVE-2025-24495, CVE-2024-28956 CVE-2024-43420, CVE-2024-45332 - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c0003f7; - Addition of cpuid:806F8/0x87 SPR-SP E5/S3 microcode in...

jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

A flaw was found in jq, a command line JSON processor. A specially crafted input can cause a heap-based buffer over-read when formatting an empty string because it was not properly null-terminated, causing a crash and resulting in a denial of service...

CVE-2024-45183

An issue was discovered in Samsung Mobile Processor Exynos 2100, 1280, 2200, 1330, 1380, 1480, and 2400. A lack of a JPEG length check leads to an out-of-bound write...

CVE-2024-45183

An issue was discovered in Samsung Mobile Processor Exynos 2100, 1280, 2200, 1330, 1380, 1480, and 2400. A lack of a JPEG length check leads to an out-of-bound write...

CVE-2024-45183

CVE-2024-45183 concerns Samsung Mobile Processor Exynos families (2100, 1280, 2200, 1330, 1380, 1480, 2400). The issue is a lack of a JPEG length check that can cause an out-of-bounds write . The entry includes a CVSS 3.1 base score of 6.5 (MEDIUM) with network attack vector, no privileges, no us...

PT-2025-31838 · Samsung · Exynos 2200 +6

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Processor Exynos 2100 Samsung Mobile Processor Exynos 1280 Samsung Mobile Processor Exynos 2200 Samsung Mobile Processor Exynos 1330 Samsung Mobile Processor Exynos 1380 Samsung Mobile Processor Exynos 1480 Samsung Mobile...

CVE-2024-45183

An issue was discovered in Samsung Mobile Processor Exynos 2100, 1280, 2200, 1330, 1380, 1480, and 2400. A lack of a JPEG length check leads to an out-of-bound write...

GPU in the Blind Spot: Overlooked Security Risks in Transportation

Graphics processing units GPUs are becoming an essential part of the intelligent transportation system ITS for enabling video-based and artificial intelligence AI based applications. GPUs provide high-throughput and energy-efficient computing for tasks like sensor fusion and roadside video...

CVE-2025-1221

A Zigbee Radio Co-Processor RCP, which is using SiLabs EmberZNet Zigbee stack, was unable to send messages to the host system CPCd due to heavy Zigbee traffic, resulting in a Denial of Service DoS attack, Only hard reset will bring the device to normal operation...

CVE-2025-1221

CVE-2025-1221 affects Zigbee Radio Co-Processors using Silicon Labs EmberZNet Zigbee stack. The issue arises from heavy Zigbee traffic that prevents messages from being sent to the host system (CPCd), causing a Denial of Service. Practical impact is DoS with normal operation only restored by a ha...

CBL Mariner 2.0 Security Update: jq (CVE-2025-48060)

"The version of jq installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-48060 advisory. - jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present i...

Azure Linux 3.0 Security Update: jq (CVE-2025-48060)

"The version of jq installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-48060 advisory. - jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present i...

PT-2025-31377 · Silicon · Ember Znet

Name of the Vulnerable Software and Affected Versions: SiLabs EmberZNet Zigbee stack affected versions not specified Description: A Zigbee Radio Co-Processor RCP using the SiLabs EmberZNet Zigbee stack was unable to send messages to the host system CPCd due to heavy Zigbee traffic. This resulted ...

microcode_ctl bug fix and enhancement update

An update is available for microcodectl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The microcodectl packages provide microcode updates for Intel and AMD...