NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags

...

URI Credential Leakage Bypass over CVE-2025-27221

...

libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group.

...

OOBW in utf_16le_to_utf_8_truncated() in libpcap

...

OOBR and OOBW in pcap_ether_aton() in libpcap

...

Tracing logging user input may result in poisoning logs with ANSI escape sequences

...

In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

...

NULL Pointer Dereference in PDO quoting

...

Heap buffer overflow in array_merge()

...

Information Leak of Memory in getimagesize

...

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.

...

MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability

...

PyTorch torch.lstm_cell memory corruption

...

smack: fix bug: unprivileged task can create labels

...

crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id

...

RDMA/rxe: Fix null deref on srq->rq.queue after resize failure

...

bpf: Check skb->transport_header is set in bpf_skb_check_mtu

...

ima: Handle error code returned by ima_filter_rule_match()

...

btrfs: fix racy bitfield write in btrfs_clear_space_info_full()

...

nbd: defer config put in recv_work

...

bpf: Do not let BPF test infra emit invalid GSO types to stack

...

fs/ntfs3: Initialize allocated memory before use

...

bpf: Fix invalid prog->stats access when update_effective_progs fails

...

spi: tegra210-quad: Fix timeout handling

...

ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events

...

bpf: Free special fields when update [lru_,]percpu_hash maps

...

landlock: Fix handling of disconnected directories

...

nbd: defer config unlock in nbd_genl_connect

...

iomap: allocate s_dio_done_wq for async reads as well

...

gpu: host1x: Fix race in syncpt alloc/free

...

scsi: qla2xxx: Fix improper freeing of purex item

...

ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi()

...

wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb()

...

regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex

...

NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid

...

scsi: smartpqi: Fix device resources accessed after device removal

...

nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails.

...

can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header

...

team: Move team device type change at the end of team_port_add

...

can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data

...

atm/fore200e: Fix possible data race in fore200e_open()

...

Bluetooth: Fix null-ptr-deref in l2cap_sock_resume_cb()

...

netfilter: flowtable: account for Ethernet header in nf_flow_pppoe_proto()

...

Net-SNMP snmptrapd crash

...

platform/x86/amd/pmc: Add support for Van Gogh SoC

...

firmware: stratix10-svc: fix bug in saving controller data

...

iio: accel: bmc150: Fix irq assumption regression

...

locking/spinlock/debug: Fix data-race in do_raw_write_lock

...

usb: renesas_usbhs: Fix synchronous external abort on unbind

...

jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted

...