6294 matches found
K000159002: Linux kernel vulnerability CVE-2025-39718
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Validate length in packet header before skbput When receiving a vsock packet in the guest, only the virtqueue buffer size is validated prior to virtiovsockskbrxput. Unfortunately,...
K000158999: Linux kernel vulnerability CVE-2025-38628
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: vdpa/mlx5: Fix release of uninitialized resources on error path The commit in the fixes tag made sure that mlx5vdpafree is the single entrypoint for removing the vdpa device resources added in...
K000158972: Linux kernel (nilfs) vulnerability CVE-2022-50367
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfsmdtdestroy In allocinode, inodeinitalways could return -ENOMEM if securityinodealloc fails, which causes inode-iprivate uninitialized. Then nilfsismetadatafileinode return...
K000158955: Intel QAT vulnerability CVE-2025-33000
Security Advisory Description Improper input validation for some Intel QuickAssist Technology before version 2.6.0 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a low complexity attack may enable escalatio...
K000158954: Apache Struts vulnerability CVE-2025-64775
Security Advisory Description Denial of Service vulnerability in Apache Struts, file leak in multipart request processing causes disk exhaustion. This issue affects Apache Struts: from 2.0.0 through 6.7.0, from 7.0.0 through 7.0.3. Users are recommended to upgrade to version 6.8.0 or 7.1.1, which...
K000158953: Linux kernel vulnerability CVE-2025-39702
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this. CVE-2025-39702 Impact There is no...
K000158952: Intel UEFI vulnerability CVE-2025-35968
Security Advisory Description Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This resul...
K000158882: Intel UEFI firmware vulnerability CVE-2024-31155
Security Advisory Description Improper buffer restrictions in the UEFI firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2024-31155 Impact There is no impact; F5 products are not affected by this vulnerability...
K000158881: Intel Xeon processor vulnerability CVE-2025-20053
Security Advisory Description Improper buffer restrictions for some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2025-20053 Impact There is no impact; F5 products are not affected by this...
K000158857: SQLite vulnerability CVE-2025-52099
Security Advisory Description Rejected Reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2025-29088. Reason: This record is a duplicate of CVE-2025-29088. Notes: All CVE users should reference CVE-2025-29088 instead of this record. All references and descriptions in this record have been remove...
K000158850: PCIe IDE protocol specification vulnerabilities CVE-2025-9612, CVE-2025-9613, and CVE-2025-9614
Security Advisory Description CVE-2025-9612 An issue was discovered in the PCI Express PCIe Integrity and Data Encryption IDE specification, where insufficient guidance on Transaction Layer Packet TLP ordering and tag uniqueness may allow encrypted packets to be replayed or reordered without...
K000158176: NGINX Ingress Controller vulnerability CVE-2025-14727
Security Advisory Description A vulnerability exists in the NGINX Ingress Controller nginx . org/rewrite-target annotation validation. CVE-2025-14727 Note : Support for path rewrites using the nginx . org/rewrite-target annotation was added in NGINX Ingress Controller version 5.3.0. For more...
K000158206: Apache HTTP Server vulnerability CVE-2025-66200
Security Advisory Description moduserdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid. This issue affects Apache HTTP Server: from 2.4.7...
K000158199: LibTIFF vulnerability CVE-2023-52355
Security Advisory Description An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64 API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB. CVE-2023-52355...
K000158198: Linux Kernel vulnerability CVE-2025-38718
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctprcv A cloned head skb still shares these frag skbs in fraglist with the original head skb. It's not safe to access these frag skbs. CVE-2025-38718 Impact The...
K000158197: Linux Kernel vulnerability CVE-2022-50406
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: iomap: iomap: fix memory corruption when recording errors during writeback. CVE-2022-50406 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5...
K000158185: glibc vulnerability CVE-2024-33599
Security Advisory Description nscd: Stack-based buffer overflow in netgroup cache If the Name Service Cache Daemon's nscd fixed size cache is exhausted by client requests then a subsequent client request for netgroup data may result in a stack-based buffer overflow. This flaw was introduced in...
K000158155: React framework vulnerability CVE-2025-55183
Security Advisory Description An information leak vulnerability exists in specific configurations of React Server Components versions 19.0.0, 19.0.1 19.1.0, 19.1.1, 19.1.2, 19.2.0 and 19.2.1, including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and...
K000158154: React framework vulnerability CVE-2025-55184
Security Advisory Description A pre-authentication denial of service vulnerability exists in React Server Components versions 19.0.0, 19.0.1 19.1.0, 19.1.1, 19.1.2, 19.2.0 and 19.2.1, including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and...
K000158136: Linux kernel vulnerabilities CVE-2023-53232 and CVE-2023-53257
Security Advisory Description CVE-2023-53232 In the Linux kernel, the following vulnerability has been resolved: mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data The MT7921 driver no longer uses eeprom.data, but the relevant code has not been removed completely since commit...
K000158128: SQLite vulnerability CVE-2025-6965
Security Advisory Description There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above. CVE-2025-6965 Impact There...
K000158127: Linux kernel vulnerability CVE-2023-53354
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: skbuff: skbsegment, Call zero copy functions before using skbuff frags Commit bf5c25d60861 "skbuff: in skbsegment, call zerocopy functions once per nskb" added the call to zero copy functions in...
K000158126: Linux kernel vulnerability CVE-2023-53331
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit 30696378f68a "pstore/ram: Do not treat empty buffers as valid", initialization would assume a prz was valid after seeing that the...
K000158112: iputils vulnerability CVE-2025-47268
Security Advisory Description ping in iputils before 20250602 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication. CVE-2025-47268 Impact A malicious, authenticated...
K000158115: Expat vulnerability CVE-2025-59375
Security Advisory Description libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing. CVE-2025-59375 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5...
K000158118: PostgreSQL vulnerabilities CVE-2025-8713, CVE-2025-8715
Security Advisory Description CVE-2025-8713 PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access. Separately, statistics allow a user to read sampled data that a row security policy intended to hide. PostgreSQL maintains statistics for tables...
K000158069: LibTIFF vulnerability CVE-2023-6277
Security Advisory Description An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB. CVE-2023-6277 Impact There is no impact; F5 products are not affected by...
K000158059: Next.js vulnerability CVE-2025-66478
Security Advisory Description This candidate has been reserved by a CVE Numbering Authority CNA. This record will be updated by the assigning CNA once details are available. Learn more about the Reserved state here. CVE-2025-66478 Impact There is no impact; F5 products are not affected by this...
K000158050: SQLite vulnerability CVE-2019-8457
Security Advisory Description SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap out-of-bound read in the rtreenode function when handling invalid rtree tables. CVE-2019-8457 Impact This vulnerability allows a remote, low-privileged user to trigger a heap out-of-bounds read in the...
K000158058: React framework vulnerability CVE-2025-55182
Security Advisory Description A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable...
K000158042: Apache HTTP server vulnerabilities CVE-2024-47252 and CVE-2025-49812
Security Advisory Description CVE-2024-47252 Insufficient escaping of user-supplied data in modssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/Transport Layer Security TLS client to insert escape characters into log files in some configurations. In a logging configuration whe...
K000158049: GnuTLS vulnerability CVE-2024-0567
Security Advisory Description A vulnerability was found in GnuTLS, where a cockpit which uses gnuTLS rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or...
K000158048: LibTIFF vulnerability CVE-2023-52356
Security Advisory Description A segment fault SEGV flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service. CVE-2023-52356 Impact There is no...
K000158047: Samba vulnerability CVE-2025-9640
Security Advisory Description A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information...
K000158037: Linux kernel (brcmfmac) vulnerability CVE-2022-50408
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free bug in brcmfnetdevstartxmit ret = brcmfprototxqueuedatadrvr, ifp-ifidx, skb; may be schedule, and then complete before the line ndev-stats.txbytes += skb-len;...
K000158030: gnuplot vulnerability CVE-2020-25969
Security Advisory Description gnuplot v5.5 was discovered to contain a buffer overflow via the function plotrequest. CVE-2020-25969 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development has evaluated the currently supported...
K000158021: Linux kernel (brcmfmac) vulnerability CVE-2023-53213
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: slab-out-of-bounds read in brcmfgetassocies Fix a slab-out-of-bounds read that occurs in kmemdup called from brcmfgetassocies. The bug could occur when associnfo-reqlen, data from a U...
K000158023: Linux kernel (nfs) vulnerability CVE-2025-39697
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a race when updating an existing write After nfslockandjoinrequests tests for whether the request is still attached to the mapping, nothing prevents a call to nfsinoderemoverequest from...
K000158022: Linux kernel vulnerability CVE-2023-53226
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiexprocessmgmtpacket, mwifiexprocessstarxpacket and mwifiexprocessuaprxpacket, mwifiexuapqueuebridgedpkt and...
K000158020: Linux kernel (nfs) vulnerability CVE-2025-38571
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instea...
K000158019: Linux kernel (nfs) vulnerability CVE-2025-38566
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS...
K000158001: Linux kernel vulnerability CVE-2023-53185
Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes A bad USB device is able to construct a service connection response message with target endpoint being ENDPOINT0 which is reserved for...
K000157991: Multiple LibTIFF vulnerabilities
Security Advisory Description CVE-2023-0803 LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127. CVE-2023-0802...
K000157990: Multiple LibTIFF vulnerabilities
Security Advisory Description CVE-2023-41175 A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based...
K000157988: Multiple LibTIFF vulnerabilities
Security Advisory Description CVE-2022-3570 Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosur...
K000157989: Multiple LibTIFF vulnerabilities
Security Advisory Description CVE-2016-9453 The t2preadwritepdfimagetile function in LibTIFF allows remote attackers to cause a denial of service out-of-bounds write and crash or possibly execute arbitrary code via a JPEG file with a TIFFTAGJPEGTABLES of length one. CVE-2016-5323 The...
K000157986: Multiple LibTIFF vulnerabilities
Security Advisory Description CVE-2016-9532 Integer overflow in the writeBufferToSeparateStrips function in tiffcrop.c in LibTIFF before 4.0.7 allows remote attackers to cause a denial of service out-of-bounds read via a crafted tif file. CVE-2016-5322 The setByteArray function in tifdir.c in...
K000157987: Multiple LibTIFF vulnerabilities
Security Advisory Description CVE-2022-0891 A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential...
K000157985: LibTIFF vulnerabilities CVE-2020-35522, CVE-2020-35521, CVE-2020-35524, and CVE-2020-35523
Security Advisory Description CVE-2020-35522 In LibTIFF, there is a memory malloc failure in tifpixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack. CVE-2020-35521 A flaw was found in libtiff. Due to a memory allocation failure in tifread.c, a...
K000157984: Multiple LibTIFF vulnerabilities
Security Advisory Description CVE-2012-4564 ppm2tiff does not check the return value of the TIFFScanlineSize function, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted PPM image that triggers an integer overflow, a zero-memory...