PT-2025-49078

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s vsock implementation. Specifically, the issue arises when handling signals or timeouts during a connect operation on an already established socket...

SurrealDB no JavaScript script function default timeout could facilitate DoS

Through enabling the scripting capability. SurrealDB allows for advanced functions with complicated logic, by allowing embedded functions to be written in JavaScript. These functions are bounded for memory and stack size, but not in time. An attacker could launch a number of long running function...

GHSA-3824-QMFQ-2QV7 SurrealDB no JavaScript script function default timeout could facilitate DoS

Through enabling the scripting capability. SurrealDB allows for advanced functions with complicated logic, by allowing embedded functions to be written in JavaScript. These functions are bounded for memory and stack size, but not in time. An attacker could launch a number of long running function...

PT-2025-20525

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the igc driver in the Linux kernel, where writing to clear the PTM status 'valid' bit while the PTM cycle is triggered results in unreliable PTM operation. This c...

PT-2025-15296 · Apollo · Apollo Router Core

Name of the Vulnerable Software and Affected Versions: Apollo Router Core versions prior to 1.61.2 Apollo Router Core versions prior to 2.1.1 Description: A vulnerability in the Apollo Router allowed queries with deeply nested and reused named fragments to be prohibitively expensive to query plan...

CVE-2025-21914

In the Linux kernel, the following vulnerability has been resolved: slimbus: messaging: Free transaction ID in delayed interrupt scenario In case of interrupt delay for any reason, slimdotransfer returns timeout error but the transaction ID TID is not freed. This results into invalid memory acces...

DEBIAN-CVE-2025-21914

In the Linux kernel, the following vulnerability has been resolved: slimbus: messaging: Free transaction ID in delayed interrupt scenario In case of interrupt delay for any reason, slimdotransfer returns timeout error but the transaction ID TID is not freed. This results into invalid memory acces...

UBUNTU-CVE-2025-21914

In the Linux kernel, the following vulnerability has been resolved: slimbus: messaging: Free transaction ID in delayed interrupt scenario In case of interrupt delay for any reason, slimdotransfer returns timeout error but the transaction ID TID is not freed. This results into invalid memory acces...

go-redis allows potential out of order responses when `CLIENT SETINFO` times out during connection establishment

...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not releasing a transaction ID in a timeout situation...

PT-2025-22243

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak issue has been identified in the Linux kernel, specifically in the wifi module wl1251. The problem occurs when the wl1251 ps elp wakeup function fails with a -ETIMEDOUT...

Windows 365 Cloud PC VDAs registration getting stuck at initializing state

Windows 365 Cloud PC VDAs getting stuck at initializing state, users cannot access the desktop On the VDA, Citrix Gateway service NGS logs located in "C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Citrix\Ngs" directory will show the below errors. TimeStamp=2025-03-18T07:18:59.591082Z...

DEBIAN-CVE-2023-52941

In the Linux kernel, the following vulnerability has been resolved: can: isotp: split tx timer into transmission and timeout The timer for the transmission of isotp PDUs formerly had two functions: 1. send two consecutive frames with a given time gap 2. monitor the timeouts for flow control frame...

CVE-2023-52941 can: isotp: split tx timer into transmission and timeout

In the Linux kernel, the following vulnerability has been resolved: can: isotp: split tx timer into transmission and timeout The timer for the transmission of isotp PDUs formerly had two functions: 1. send two consecutive frames with a given time gap 2. monitor the timeouts for flow control frame...

CVE-2023-52941

CVE-2023-52941 affects the Linux kernel can:isotp subsystem. The bug arose from the tx timer handling for isotp PDUs, where the timer served two roles: sending two consecutive frames with a gap and monitoring timeouts for flow control and echo frames. This caused more complex txstate checks and e...

CVE-2023-52941

In the Linux kernel, the following vulnerability has been resolved: can: isotp: split tx timer into transmission and timeout The timer for the transmission of isotp PDUs formerly had two functions: 1. send two consecutive frames with a given time gap 2. monitor the timeouts for flow control frame...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the can isotp component splitting the tx timer into two functions, transmission and timeout, fixing a...

Vulnerability of RDMA/mad components of the Linux operating system, allowing a hacker to cause a service failure

The vulnerability of RDMA/mad components of the Linux operating system’s kernel is related to incorrect blocking in the retrysend and timeoutsends functions in drivers/infiniband/core/mad.c. Exploiting this vulnerability can allow an attacker to trigger a service failure...

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2025-065 (ALASKERNEL-5.15-2025-065)

The version of kernel installed on the remote host is prior to 5.15.165-110.161. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2025-065 advisory. In the Linux kernel, the following vulnerability has been resolved: tls: fix race between tx work...

GO-2025-3540 Potential out of order responses when CLIENT SETINFO times out during connection establishment in github.com/redis/go-redis

Potential out of order responses when CLIENT SETINFO times out during connection establishment in github.com/redis/go-redis...