22103 matches found
net: mscc: ocelot: fix incorrect IFH SRC_PORT field in ocelot_ifh_set_basic()
...
bpf, sockmap: Fix race between element replace and close()
...
bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog
...
gve: guard XSK operations on the existence of queues
...
drm/amd/display: Add check for granularity in dml ceil/floor helpers
...
ksmbd: set ATTR_CTIME flags when setting mtime
...
mtd: rawnand: fix double free in atmel_pmecc_create_user()
...
Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loop
...
Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()
...
btrfs: fix use-after-free in btrfs_encoded_read_endio()
...
netfilter: nf_tables: do not defer rule destruction via call_rcu
...
net/mlx5: DR, prevent potential error pointer dereference
...
Bluetooth: hci_event: Fix using rcu_read_(un)lock while iterating
...
net: stmmac: fix TSO DMA API usage causing oops
...
net: defer final 'struct net' free in netns dismantle
...
cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU
...
bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors
...
wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one
...
sched/numa: fix memory leak due to the overwritten vma->numab_state
...
mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM
...
net/smc: protect link down work from execute after lgr freed
...
drm/i915: Fix NULL pointer dereference in capture_engine
...
Bluetooth: btmtk: avoid UAF in btmtk_process_coredump
...
scsi: sg: Fix slab-use-after-free read in sg_release()
...
ceph: fix memory leak in ceph_direct_read_write()
...
ALSA: control: Avoid WARN() for symlink errors
...
can: hi311x: hi3110_can_ist(): fix potential use-after-free
...
net: enetc: Do not configure preemptible TCs if SIs do not support
...
net: avoid potential UAF in default_operstate()
...
smb: client: fix use-after-free of signing key
...
wifi: rtw89: check return value of ieee80211_probereq_get() for RNR
...
btrfs: don't take dev_replace rwsem on task already holding it
...
dlm: fix possible lkb_resource null dereference
...
Chromium: CVE-2025-2137 Out of bounds read in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2025-2136 Use after free in Inspector
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2025-2135 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2025-1920 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2025-24201 Out of bounds write in GPU on Mac
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware of reports that an exploit for CVE-2025-24201 exists in the wild...
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally...
Windows Fast FAT File System Driver Remote Code Execution Vulnerability
Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to execute code locally...
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally...
Windows Telephony Service Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network...
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
Use after free in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally...
Windows Server Elevation of Privilege Vulnerability
Improper link resolution before file access 'link following' in Microsoft Windows allows an authorized attacker to elevate privileges locally...
DirectX Graphics Kernel File Denial of Service Vulnerability
Null pointer dereference in Windows Kernel Memory allows an authorized attacker to deny service locally...
Visual Studio Elevation of Privilege Vulnerability
Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally...
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally...
Windows USB Video Class System Driver Elevation of Privilege Vulnerability
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack...
Microsoft Excel Remote Code Execution Vulnerability
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...