CVE-2022-49231

In the Linux kernel, the following vulnerability has been resolved: rtw88: fix memory overrun and memory leak during hwscan Previously we allocated less memory than actual required, overwrite to the buffer causes the mm module to complaint and raise access violation faults. Along with potential...

CVE-2022-49231 rtw88: fix memory overrun and memory leak during hw_scan

In the Linux kernel, the following vulnerability has been resolved: rtw88: fix memory overrun and memory leak during hwscan Previously we allocated less memory than actual required, overwrite to the buffer causes the mm module to complaint and raise access violation faults. Along with potential...

CVE-2022-49231

The CVE-2022-49231 entry concerns a Linux kernel issue in the rtw88 driver where memory overrun and memory leaks occurred during hw_scan due to under-allocated buffers. The mitigation is explicit: allocate the correct size and implement a proper deinitialization flow. Connected sources (SUSE Astr...

CVE-2025-25785

JizhiCMS v2.5.4 was discovered to contain a Server-Side Request Forgery SSRF via the component \c\PluginsController.php. This vulnerability allows attackers to perform an intranet scan via a crafted request...

PT-2025-8339 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been identified, specifically in the staging driver r8188eu. The issue is related to the function rtw wx set scan, where there is a potential fo...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an under-allocation of memory and a memory leak in rtw88 during hwscan...

CVE-2025-25785

JizhiCMS v2.5.4 was discovered to contain a Server-Side Request Forgery SSRF via the component \c\PluginsController.php. This vulnerability allows attackers to perform an intranet scan via a crafted request...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not disabling spectral scan during spectraldeinit, which could lead to a crash...

JIZHICMS 安全漏洞

JIZHICMS Jizhi CMS is an open source content management system CMS from China Jizhi JIZHI. A security vulnerability exists in JIZHICMS version v2.5.4, which stems from a server-side request forgery in the cPluginsController.php component that allows an attacker to perform an intranet scan...

CVE-2025-25785

CVE-2025-25785 affects JizhiCMS v2.5.4 through a Server-Side Request Forgery (SSRF) in the c\PluginsController.php component. The vulnerability enables an attacker to initiate an intranet scan via a crafted request. The reported impact is high confidentiality and integrity risk (C/H, I/H) with no...

February 25, 2025—KB5052094 (OS Builds 22621.4974 and 22631.4974) Preview

February 25, 2025—KB5052094 OS Builds 22621.4974 and 22631.4974 Preview For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11, version 23H2, see its update history page. Note Follow...

The vulnerability of the iomap_write_delalloc_scan() function in Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the iomapwritedelallocscan function in Linux operating systems is related to the execution of a loop with an unreachable exit condition due to numerical truncation. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2024-13365

The Security & Malware scan by CleanTalk plugin for WordPress is vulnerable to arbitrary file uploads due to the plugin uploading and extracting .zip archives when scanning them for malware through the checkUploadedArchive function in all versions up to, and including, 2.149. This makes it possib...

WordPress plugin Security & Malware scan by CleanTalk 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A code issue vulnerability exists in WordPress plugin...

WordPress Security & Malware scan by CleanTalk plugin <= 2.149 - Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Arbitrary File Upload vulnerability discovered by Lucio Sá in WordPress Plugin Security & Malware scan by CleanTalk versions = 2.149...

SUSE CVE-2025-1148

A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function linkorderscan of the file ld/ldelfgen.c of the component ld. The manipulation leads to memory leak. The attack may be launched remotely. The complexity of an attack is rather high...

DEBIAN-CVE-2025-1148

A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function linkorderscan of the file ld/ldelfgen.c of the component ld. The manipulation leads to memory leak. The attack may be launched remotely. The complexity of an attack is rather high...

UBUNTU-CVE-2025-1148

A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function linkorderscan of the file ld/ldelfgen.c of the component ld. The manipulation leads to memory leak. The attack may be launched remotely. The complexity of an attack is rather high...

CVE-2025-1148 GNU Binutils ld ldelfgen.c link_order_scan memory leak

A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function linkorderscan of the file ld/ldelfgen.c of the component ld. The manipulation leads to memory leak. The attack may be launched remotely. The complexity of an attack is rather high...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-35912)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35912 advisory. - In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: rfi: fix...