12 matches found
CVE-2022-49627
In the Linux kernel, the following vulnerability has been resolved: ima: Fix potential memory leak in imainitcrypto On failure to allocate the SHA1 tfm, IMA fails to initialize and exits without freeing the imaalgoarray. Add the missing kfree for imaalgoarray to avoid the potential memory leak...
CVE-2022-49709
In the Linux kernel, the following vulnerability has been resolved: cfi: Fix cfislowpathdiag RCU usage with cpuidle RCUNONIDLE usage during cfislowpathdiag can result in an invalid RCU state in the cpuidle code path: WARNING: CPU: 1 PID: 0 at kernel/rcu/tree.c:613 rcueqsenter+0xe4/0x138 ... Call...
CVE-2022-49728
In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix signed integer overflow in ip6appenddata Resurrect ubsan overflow checks and ubsan report this warning, fix it by change the variable length type to sizet. UBSAN: signed-integer-overflow in net/ipv6/ip6output.c:1489:19...
CVE-2022-49546
In the Linux kernel, the following vulnerability has been resolved: x86/kexec: fix memory leak of elf header buffer This is reported by kmemleak detector: unreferenced object 0xffffc900002a9000 size 4096: comm "kexec", pid 14950, jiffies 4295110793 age 373.951s hex dump first 32 bytes: 7f 45 4c 4...
CVE-2024-39372
creationtimestamp| type| source ---|---|--- 2025-02-12 22:18:09+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhz7cjxljq2z 2025-02-13 00:13:18+00:00| seen| https://infosec.exchange/users/cve/statuses/113993685232309899...
Microsoft Patch Tuesday, February 2025 Edition
Microsoft today issued security updates to fix at least 56 vulnerabilities in its Windows operating systems and supported software, including two zero-day flaws that are being actively exploited. All supported Windows operating systems will receive an update this month for a buffer overflow...
CVE-2025-21181
creationtimestamp| type| source ---|---|--- 2025-02-11 18:04:12+00:00| seen| https://infosec.exchange/users/cve/statuses/113986571562383817 2025-02-11 18:08:38+00:00| seen| https://www.thezdi.com/blog/2025/2/11/the-february-2025-security-update-review 2025-02-11 18:16:26+00:00| seen|...
CVE-2024-27781
creationtimestamp| type| source ---|---|--- 2025-02-11 16:21:28+00:00| seen| https://infosec.exchange/users/cve/statuses/113986167638267246 2025-02-11 17:16:17+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhw5xtb55k2g 2025-02-11 17:45:28+00:00| seen|...
Security Updates for Microsoft Office Online Server (February 2025)
The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
CVE-2025-1150
creationtimestamp| type| source ---|---|--- 2025-02-10 16:34:03+00:00| seen| https://infosec.exchange/users/cve/statuses/113980554768135550 2025-02-10 17:15:39+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhtnhrg2u72v 2025-02-10 18:45:33+00:00| seen|...
CVE-2025-21253
creationtimestamp| type| source ---|---|--- 2025-02-06 22:43:45+00:00| seen| https://infosec.exchange/users/cve/statuses/113959359282487646 2025-02-06 23:15:40+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhk7ptlqch2a 2025-02-07 02:06:46+00:00| seen|...
CVE-2025-21267
creationtimestamp| type| source ---|---|--- 2025-02-06 22:43:45+00:00| seen| https://infosec.exchange/users/cve/statuses/113959359296898071 2025-02-06 23:15:42+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhk7pw4bgy2t 2025-02-07 02:06:46+00:00| seen|...