The vulnerability in the software for optimizing and deploying AI-based application solutions from AMD Ryzen AI, related to integer overflow, allows attackers to compromise the integrity and accessibility of protected information.

The vulnerability of software for optimizing and deploying AI-based applications related to AMD Ryzen AI is associated with a numerical overflow condition. Exploiting this vulnerability can allow attackers to compromise the integrity and accessibility of protected information...

SUSE CVE-2025-21965

In the Linux kernel, the following vulnerability has been resolved: schedext: Validate prevcpu in scxbpfselectcpudfl If a BPF scheduler provides an invalid CPU outside the nrcpuids range as prevcpu to scxbpfselectcpudfl it can cause a kernel crash. To prevent this, validate prevcpu in...

SUSE CVE-2025-21991

In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes Currently, loadmicrocodeamd iterates over all NUMA nodes, retrieves their CPU masks and unconditionally accesses per-CPU data for the first CPU of each mask...

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 128.9.0 ESR MFSA 2025-22 bsc1240083: CVE-2025-3028: Use-after-free triggered by XSLTProcessor CVE-2025-3029: URL Bar Spoofing via non-BMP Unicode characters CVE-2025-3030: Memory safety bugs fixed in Firef...

firefox: thunderbird: Use-after-free triggered by XSLTProcessor

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free...

firefox: thunderbird: Use-after-free triggered by XSLTProcessor

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free...

firefox: thunderbird: Use-after-free triggered by XSLTProcessor

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free...

firefox: thunderbird: Use-after-free triggered by XSLTProcessor

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free...

SUSE CVE-2025-3028

JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free. This vulnerability was fixed in Firefox 137, Firefox ESR 115.22, Firefox ESR 128.9, Thunderbird 137, and Thunderbird 128.9...

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 128.9.0 ESR MFSA 2025-22 bsc1240083: CVE-2025-3028: Use-after-free triggered by XSLTProcessor CVE-2025-3029: URL Bar Spoofing via non-BMP Unicode characters CVE-2025-3030: Memory safety bugs fixed in Firef...

DEBIAN-CVE-2025-3028

JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free. This vulnerability was fixed in Firefox 137, Firefox ESR 115.22, Firefox ESR 128.9, Thunderbird 137, and Thunderbird 128.9...

CVE-2025-3028

JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free. This vulnerability affects Firefox 137, Firefox ESR 115.22, Firefox ESR 128.9, Thunderbird 137, and Thunderbird 128.9...

UBUNTU-CVE-2025-3028

JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free. This vulnerability was fixed in Firefox 137, Firefox ESR 115.22, Firefox ESR 128.9, Thunderbird 137, and Thunderbird 128.9...

Vulnerability of the acpi_processor_power_exit() function in the driver/acpi/processor_idle.c module – The ACPI support driver for the Linux kernel’s processor idle state provides a mechanism for allowing attackers to access protected information or cause system failures.

Vulnerability of the acpiprocessorpowerexit function in the driver/acpi/processoridle.c module – The ACPI support driver for the Linux kernel involves unconstrained and unrestricted resource allocation. Exploiting this vulnerability could allow an attacker to access protected information or cause...

Desktop VDA installation on Surface Pro with ARM64

VDA installation and setup on Surface Pro device with ARM64 Processor...

The vulnerability of the HTTP request processor daemon in the TRENDnet TEW-410APB wireless access point software allows a attacker to cause a service failure.

The vulnerability of the HTTP request processor in TRENDnet TEW-410APB wireless access points is related to the zero pointer swapping issue. Exploiting this vulnerability allows a remote attacker to cause service interruptions by sending a specially crafted POST request...

CVE-2025-0986 IBM PowerVM Hypervisor data manipulation

IBM PowerVM Hypervisor FW1050.00 through FW1050.30 and FW1060.00 through FW1060.20 could allow a local user, under certain Linux processor combability mode configurations, to cause undetected data loss or errors when performing gzip compression using HW acceleration...

WordPress plugin PHP/MySQL CPU performance statistics 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in...

PT-2025-13521 · Ibm · Ibm Powervm Hypervisor

Name of the Vulnerable Software and Affected Versions: IBM PowerVM Hypervisor versions FW1050.00 through FW1050.30 IBM PowerVM Hypervisor versions FW1060.00 through FW1060.20 Description: The issue allows a local user, under certain Linux processor compatibility mode configurations, to cause...

The vulnerability of Intel Xeon processor microprogramming software lies in the insufficient checking of unusual or exceptional states, which allows attackers to increase their privileges.

The vulnerability of Intel Xeon processor microprogramming software is related to insufficient testing of unusual or exceptional states. Exploiting this vulnerability can allow attackers to gain enhanced privileges...