📄 Varnish / Styx HTTP Request Smuggling

Proof of concept exploit that demonstrates an HTTP request smuggling vulnerability between Varnish and Styx / Nginx. ============================================================================================================================================= | Title : HTTP Request Smuggling TE.CL...

PT-2025-52988

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the vdpa Virtual Data Path Acceleration component. The vdpa nl policy structure, used for validating attributes during network message nlmsg...

PT-2025-53159

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5 Description The Linux kernel contained a flaw in the unix stream sendpage function where a null pointer dereference could occur. This issue arose from attempting to add data to the last socket buffer skb in t...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to clean up the ring interrupt work queue and affinity on a load failure, which could lead to...

PT-2025-53046

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s RDMA/bnxt re component related to handling completions after queue pair QP destruction. Hardware may generate completions even after a QP is destroyed...

PT-2025-52936

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where a zero-sized raw send message request for PF IEEE802154 sockets could trigger a warning in the dev queue xmit function. This occurred because the...

PT-2025-53165

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s block cgroup functionality. Specifically, the issue arises when removing a block group blkg from a queue’s list q-blkg list without holding the queue...

PT-2025-53004

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the mt76 and mt7996 components. Specifically, a null pointer dereference can occur in the mt7996 conf tx function when a link does not have an...

PT-2025-53040

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel’s RDMA/siw component related to handling immediate work requests and flushing to the completion queue. An incorrect send queue element opcode during...

Linux Distros Unpatched Vulnerability : CVE-2025-68738

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: mt76: mt7996: fix null pointer deref in mt7996conftx If a link does not have an assigned channel yet, mt7996viflink returns NULL. We still need to store t...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from failure to free mqsysctls after initmqueuefs fails, which could lead to a memory leak...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unreleased wait queue in autofscatatonicmode, which could lead to a memory leak...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from vdpa's lack of policy validation of queue index attributes, which could lead to out-of-bounds reads...

Linux Distros Unpatched Vulnerability : CVE-2023-54161

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - afunix: Fix null-ptr-deref in unixstreamsendpage. Bing-Jhong Billy Jheng reported null-ptr-deref in unixstreamsendpage with detailed analysis and a nice repro...

PT-2025-52965

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained an issue within the virtio vdpa component related to the conditional building of affinity masks. The initial implementation attempted to build these masks...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from an out-of-bounds access when an immediate work request is flushed to the completion queue...

PT-2025-53229

In the Linux kernel, the following vulnerability has been resolved: can: j1939: prevent deadlock by moving j1939 sk errqueue This commit addresses a deadlock situation that can occur in certain scenarios, such as when running data TP/ETP transfer and subscribing to the error queue while receiving...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the possibility that RDMA bnxtre may process completion events even after destroying QPs, potentially leadin...

PT-2025-52985

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel’s RDMA/rxe component related to the handling of queue pair QP cleanup. Specifically, an error can occur when attempting to register a non-static key...

PT-2025-53114

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the init mqueue fs function within the message queue subsystem of the Linux kernel. The issue occurs when init mqueue fs fails after setup mq sysctls, and retire ...