Intel Thread Director Visualizer 代码问题漏洞

Intel Thread Director Visualizer is a desktop application from Intel Corporation USA. It helps end-users visualize CPU utilization and the distribution between P-cores performance cores and E-cores energy-efficient cores for Alder Lake and above platforms. A code issue vulnerability exists in Int...

ALSA-2025:1351 Important: nodejs:20 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: undici: Undici Uses Insufficiently Random Values CVE-2025-22150 nodejs: Node.js Worker Thread Exposure via Diagnostics Channel CVE-2025-23083...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: nfsd: Cancel nfsdshrinkerwork using sync mode in nfs4stateshutdownnet In the normal case, when we execute echo 0 /proc/fs/nfsd/threads, the function nfs4statedestroynet in nfs4stateshutdownnet will release all resources related t...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: iouring: Check whether iowq is killed before queuing it. Task work can be executed after the task has gone through iouring termination—whether it’s the final taskwork run or the fallback path. In this case, task work will find th...

SUSE CVE-2025-21688

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Assign job pointer to NULL before signaling the fence In commit e4b5ccd392b9 "drm/v3d: Ensure job pointer is set to NULL after job completion", we introduced a change to assign the job pointer to NULL after completing a...

PT-2025-6649 · Intel · Intel Thread Director Visualizer

Name of the Vulnerable Software and Affected Versions: IntelR Thread Director Visualizer version 1.0.0 Description: The issue concerns an uncontrolled search path in the IntelR Thread Director Visualizer software. This could potentially allow an authenticated user to enable escalation of privileg...

Intel® Thread Director Visualizer Advisory

Summary: A potential security vulnerability in the Intel® Thread Director Visualizer software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-36283 Description: Uncontrolled search path for the...

UBUNTU-CVE-2025-21688

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Assign job pointer to NULL before signaling the fence In commit e4b5ccd392b9 "drm/v3d: Ensure job pointer is set to NULL after job completion", we introduced a change to assign the job pointer to NULL after completing a...

CVE-2025-21688 drm/v3d: Assign job pointer to NULL before signaling the fence

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Assign job pointer to NULL before signaling the fence In commit e4b5ccd392b9 "drm/v3d: Ensure job pointer is set to NULL after job completion", we introduced a change to assign the job pointer to NULL after completing a...

Azure Linux 3.0 Security Update: mysql (CVE-2024-21238)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-21238 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versio...

[SECURITY] Fedora 40 Update: stalld-1.19.8-1.fc40

The stalld program monitors the set of system threads, looking for threads that are ready-to-run but have not been given processor time for some threshold period. When a starving thread is found, it is given a temporary boost using the SCHEDDEADLINE policy. The default is to allow 10 microseconds...

CVE-2025-1115

A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...

CVE-2025-1115

A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...

CVE-2025-1115 RT-Thread lwp_syscall.c sys_timer_settime information disclosure

A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...

CVE-2025-1115 RT-Thread lwp_syscall.c sys_timer_settime information disclosure

A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...

CVE-2025-1115

RT-Thread up to 5.1.0 is affected by a local-information-disclosure vulnerability in the lwp_syscall.c path (sys_device_close/sys_device_control/etc.). The issue stems from improper handling/manipulation of the argument arg[0], enabling information disclosure via local access. Exploit details are...

[SECURITY] Fedora 41 Update: stalld-1.19.8-1.fc41

The stalld program monitors the set of system threads, looking for threads that are ready-to-run but have not been given processor time for some threshold period. When a starving thread is found, it is given a temporary boost using the SCHEDDEADLINE policy. The default is to allow 10 microseconds...

PT-2025-6016 · Rt-Thread · Rt-Thread

Name of the Vulnerable Software and Affected Versions: RT-Thread versions up to 5.1.0 Description: A problematic vulnerability was found in RT-Thread. The issue affects the sys thread create function of the file rt-thread/components/lwp/lwp syscall.c. The manipulation of the argument arg0 leads t...

RT-Thread 访问控制错误漏洞

RT-Thread is an open source IoT real-time operating system RTOS from RT-Thread Open Source. An access control error vulnerability exists in RT-Thread version 5.1.0 and earlier, which stems from improper handling of parameters in the systhreadcreate function, resulting in a risk of local informati...

Vulnerability of the Server: Thread Pooling component of the Oracle MySQL Server database management system, which allows attackers to cause service interruptions.

The vulnerability of the Server:Thread Pooling component of the Oracle MySQL Server database management system is related to the exhaustion of memory resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through network packets...