CVE-2025-68209

CVE-2025-68209: Linux kernel mlx5 CQ creation defaults have been fixed. The patch adds defaults in the create CQ flow: a safe default dummy completion function to guard against null pointer exceptions for CQs without user-defined handlers, and an invalid default command sequence number for kernel...

CVE-2025-68206 netfilter: nft_ct: add seqadj extension for natted connections

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: add seqadj extension for natted connections Sequence adjustment may be required for FTP traffic with PASV/EPSV modes. due to need to re-write packet payload IP, port on the ftp control connection. This can requi...

CVE-2025-68206

In CVE-2025-68206, the Linux kernel netfilter nft_ct subsystem is fixed by adding a seqadj extension for natted connections. The issue affected FTP traffic (PASV/EPSV modes) where NAT rewrites of FTP control payloads could require adjustments to TCP length and the expected seq/ack_seq, breaking o...

CVE-2025-68206 netfilter: nft_ct: add seqadj extension for natted connections

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: add seqadj extension for natted connections Sequence adjustment may be required for FTP traffic with PASV/EPSV modes. due to need to re-write packet payload IP, port on the ftp control connection. This can requi...

CVE-2025-68206

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: add seqadj extension for natted connections Sequence adjustment may be required for FTP traffic with PASV/EPSV modes. due to need to re-write packet payload IP, port on the ftp control connection. This can requi...

EUVD-2025-203625

The Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Text Path widget in all versions up to, and including, 3.33.3 due to insufficient neutralization of user-supplied input used to build SVG markup inside the widget. This makes it possible for...

ScamSweeper: Detecting Illegal Accounts in Web3 Scams Via Transactions Analysis

The web3 applications have recently been growing, especially on the Ethereum platform, starting to become the target of scammers. The web3 scams, imitating the services provided by legitimate platforms, mimic regular activity to deceive users. However, previous studies have primarily concentrated...

PT-2025-51580

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's gpiolib component related to invalid pointer access within the debugfs interface. Specifically, if memory allocation within the gpiolib seq start...

PT-2025-51622

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the mlx5 driver related to the creation of completion queues CQs. Currently, CQs without a completion function are assigned the mlx5 add cq to tasklet...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of sequence adjustment support, which could result in an interrupted FTP connection...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from excessive ICCQ currents during the UFS shutdown sequence, which could lead to power management issues...

PT-2025-51619

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the netfilter module related to Network Address Translation NAT and connection tracking conntrack. Specifically, the problem arises when handlin...

EUVD-2025-203412

Webutler v3.2 contains a remote code execution vulnerability that allows authenticated administrators to upload PHP files with system command execution. Attackers can upload a PHAR file with embedded system commands to the media browser and execute arbitrary commands by accessing the uploaded fil...

OESA-2025-2798 bwa security update

BWA is a program for aligning sequencing reads against a large reference genome e.g. human genome. It has two major components, one for read shorter than 150bp and the other for longer reads. Security Fixes: BWA aka Burrow-Wheeler Aligner before 2019-01-23 has a stack-based buffer overflow in the...

OESA-2025-2797 bwa security update

BWA is a program for aligning sequencing reads against a large reference genome e.g. human genome. It has two major components, one for read shorter than 150bp and the other for longer reads. Security Fixes: BWA aka Burrow-Wheeler Aligner before 2019-01-23 has a stack-based buffer overflow in the...

Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2025-2516)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-40820

Affected products do not properly enforce TCP sequence number validation in specific scenarios but accept values within a broad range. This could allow an unauthenticated remote attacker e.g. to interfere with connection setup, potentially leading to a denial of service. The attack succeeds only ...

SUSE CVE-2023-53782

In the Linux kernel, the following vulnerability has been resolved: dccp: Fix out of bounds access in DCCP error handler There was a previous attempt to fix an out-of-bounds access in the DCCP error handlers, but that fix assumed that the error handlers only want to access the first 8 bytes of th...

Apache HTTP Server Security Bypass Vulnerability (CNVD-2025-3083394)

Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. A security bypass vulnerability exists in Apache HTTP Server versions 2.4.0 through 2.4.65 due to incorrect neutralization of...

CVE-2025-40820

Affected products do not properly enforce TCP sequence number validation in specific scenarios but accept values within a broad range. This could allow an unauthenticated remote attacker e.g. to interfere with connection setup, potentially leading to a denial of service. The attack succeeds only ...