🚨 CISA KEV 2[−]
18 Feb KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2021-22175 GitLab Server-Side Request Forgery (SSRF) Vulnerability CVE-2026-22769 Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Har…CISA.GOV
18 Feb KEVVulnerability Report - January 2026submitted by cm0002 to cybersecurity 6 points | 0 comments Introduction This vulnerability report has been generated using data aggregated on Vulnerability-Lookup , with contributions from the platform’s community. It highlights the most frequently mentioned vulnerability for Jan…INFOSEC.PUB
🐛 COMMON VULNERABILITIES AND EXPOSURES 1425[−]
18 FebAI Found Twelve New Vulnerabilities in OpenSSLThe title of the post is” What AI Security Research Looks Like When It Works ,” and I agree: In the latest OpenSSL security release> on January 27, 2026, twelve new zero-day vulnerabilities (meaning unknown to the maintainers at time of disclosure) were announced.…SCHNEIER.COM
18 FebChromium: CVE-2026-2319 Race in DevToolsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.MSRC.MICROSOFT.COM
18 FebChromium: CVE-2026-2316 Insufficient policy enforcement in FramesThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.MSRC.MICROSOFT.COM
18 FebChromium: CVE-2026-2314 Heap buffer overflow in CodecsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.MSRC.MICROSOFT.COM
18 FebChromium: CVE-2026-2322 Heap buffer overflow in CodecsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.MSRC.MICROSOFT.COM
18 FebCVE-2018-19416 An issue was discovered in sysstat 12.1.1. The remap_struct function in sa_common.c has an out-of-bounds read during a memmove call, as demonstrated by sadf.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-22918 Node.js before 16.4.1 14.17.2 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-36424 An issue was discovered in Arm Mbed TLS before 2.24.0. An attacker can recover a private key (for RSA or static Diffie-Hellman) via a side-channel attack against generation of base blinding/unblinding values.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-36425 An issue was discovered in Arm Mbed TLS before 2.24.0. It incorrectly uses a revocationDate check when deciding whether to honor certificate revocation via a CRL. In some situations, an attacker can exploit this by changing the local clock.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-36422 An issue was discovered in Arm Mbed TLS before 2.23.0. A side channel allows recovery of an ECC private key, related to mbedtls_ecp_check_pub_priv, mbedtls_pk_parse_key, mbedtls_pk_parse_keyfile, mbedtls_ecp_mul, and mbedtls_ecp_mul_restartable.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-32714 Integer Overflow in Chunked Transfer-EncodingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-41913 strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKE_SA_INIT message.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-46219 When saving HSTS data to an excessively long file name curl could end up
removing all contents making subsequent requests using that file unaware of
the HSTS status they should otherwise use.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51384 In ssh-agent in OpenSSH before 9.6 certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys these constraints are only applied to the first key even if a PKCS#11 token returns multiple keys.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51781 An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race condition.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6507 Groups not dropped before running subprocess when using empty 'extra_groups' parameterInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-49292 Possible private key restoration in go package github.com/ecies/goInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-45287 Before Go 1.20, the RSA based key exchange methods in crypto/tls may exhibit a timing side channelInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-47100 In Perl before 5.38.2, S_parse_uniprop_string in regcomp.c can write to unallocated space because a property name associated with a \p{...} regular expression construct is mishandled. The earliest affected version is 5.30.0.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-49993 Espeak-ng 1.52-dev was discovered to contain a Buffer OverflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-49994 Espeak-ng 1.52-dev was discovered to contain a Floating Point Exception via the function PeaksToHarmspect at wavegen.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6864 Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-2861 Qemu: 9pfs: improper access control on special filesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-50495 NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-5115 Ansible: malicious role archive can cause ansible-galaxy to overwrite arbitrary filesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51385 In ssh in OpenSSH before 9.6 OS command injection might occur if a user name or host name has shell metacharacters and this name is referenced by an expansion token in certain situations. For example an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51714 An issue was discovered in the HTTP2 implementation in Qt before 5.15.17 6.x before 6.2.11 6.3.x through 6.5.x before 6.5.4 and 6.6.x before 6.6.2. network/access/http2/hpacktable.cpp has an incorrect HPack integer overflow check.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51780 An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51782 An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race condition.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52284 Bytecode Alliance wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) before 1.3.0 can have an "double free or corruption" error for a valid WebAssembly module because push_pop_frame_ref_offset is mishandled.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-5870 Postgresql: role pg_signal_backend can signal certain superuser processes.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6337 Vault May be Vulnerable to a Denial of Service Through Memory Exhaustion When Handling Large HTTP RequestsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6546 Kernel: gsm multiplexing race condition leads to privilege escalationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-7104 SQLite SQLite3 make alltest sqlite3session.c sessionReadRecord heap-based overflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39326 Denial of service via chunk extensions in net/httpInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-45285 Command 'go get' may unexpectedly fallback to insecure git in cmd/goInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-49991 Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-49992 Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Overflow via the function RemoveEnding at dictionary.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-7008 Systemd-resolved: unsigned name response in signed zone is not refused when dnssec=yesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6856 The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an attacker to perform remote code execution and sandbox escape. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2017-1000097 On Darwin, user's trust preferences for root certificates were not honored. If the user had a root certificate loaded in their Keychain that was explicitly not trusted, a Go program would still verify a connection using that root certificate.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2015-2158 Off-by-one error in the pngcrush_measure_idat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of serviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-1217 Header parser of http stream wrapper does not handle folded headersInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-1734 Streams HTTP wrapper does not fail for headers with invalid name and no colonInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-1861 Stream HTTP wrapper truncates redirect location to 1024 bytesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21854 sockmap, vsock: For connectible sockets allow only connectedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21857 net/sched: cls_api: fix error handling causing NULL dereferenceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21862 drop_monitor: fix incorrect initialization orderInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21867 bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21887 ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_upInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-25724 list_item_verbose in tar/util.c in libarchive through 3.7.7 does not check an strftime return value, which can lead to a denial of service or unspecified other impact via a crafted TAR archive that is read with a verbose value of 2. For example, the 100-byte buffer may not be sufficient for a custom locale.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-27220 In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-27221 In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-27516 Jinja sandbox breakout through attr filter selecting format methodInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-30211 KEX init error results with excessive memory usageInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-48615 Null Pointer Dereference vulnerability in libarchive 3.7.6 and earlier when running program bsdtar in function header_pax_extension at rchive_read_support_format_tar.c:1844:8.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58052 drm/amdgpu: Fix potential NULL pointer dereference in atomctrl_get_smc_sclk_range_tableInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58063 wifi: rtlwifi: fix memory leaks and invalid access at probe error pathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58069 rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM readInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58083 KVM: Explicitly verify target vCPU is online in kvm_get_vcpu()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52971 MariaDB Server 10.10 through 10.11.* and 11.0 through 11.4.* crashes in JOIN::fix_all_splittings_in_plan.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58055 usb: gadget: f_tcm: Don't free command immediatelyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-27152 Possible SSRF and Credential Leakage via Absolute URL in axios RequestsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-27810 Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uses uninitialized stack memory to compose the TLS Finished message, potentially leading to authentication bypasses such as replays.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52979 squashfs: harden sanity check in squashfs_read_xattr_id_tableInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-9042 This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it is running one of the affected versions listed below.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-1219 libxml streams use wrong content-type header when requesting a redirected resourceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-1736 Stream HTTP wrapper header check might omit basic auth headerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21844 smb: client: Add check for next_buffer in receive_encrypted_standard()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21848 nfp: bpf: Add check for nfp_app_ctrl_msg_alloc()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21853 bpf: avoid holding freeze_mutex during mmap operationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21858 geneve: Fix use-after-free in geneve_find_dev().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21859 USB: gadget: f_midi: f_midi_complete to call queue_workInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22870 HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/netInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-2312 cifs.upcall makes an upcall to the wrong namespace in containerized environmentsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-24855 numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-27219 In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. The method does not impose any limit on the length of the raw cookie value it processes. This oversight can lead to excessive resource consumption when parsing extremely large cookies.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-30204 jwt-go allows excessive memory allocation during header parsingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-30219 RabbitMQ has XSS Vulnerability in an Error Message in Management UIInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-40635 containerd has an integer overflow in User ID handlingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58058 ubifs: skip dumping tnc tree when zroot is nullInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58071 team: prevent adding a device which is already a team device lowerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58076 clk: qcom: gcc-sm6350: Add missing parent_map for two clocksInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21865 gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-27809 Mbed TLS before 2.28.10 and 3.x before 3.6.3, on the client side, accepts servers that have trusted certificates for arbitrary hostnames unless the TLS client application calls mbedtls_ssl_set_hostname.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-60753 An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-12818 PostgreSQL libpq undersizes allocations, via integer wraparoundInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2020-0569 Out of bounds write in Intel(R) PROSet/Wireless WiFi products on Windows 10 may allow an authenticated user to potentially enable denial of service via local access.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-28362 Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-28367 Arbitrary code execution via the go command with cgo in cmd/goInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2021-44716 net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-4160 BN_mod_exp may produce incorrect results on MIPSInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68759 wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68756 block: Use RCU in blk_mq_[un]quiesce_tagset() instead of set->tag_list_lockInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2026-22701 filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLockInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2026-22801 LIBPNG has an integer truncation causing heap buffer over-read in png_image_write_*Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68276 Avahi has a reachable assertion in avahi_wide_area_scan_cacheInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68468 Avahi has a reachable assertion in lookup_multicast_callbackInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68471 Avahi has a reachable assertion in lookup_startInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68822 Input: alps - fix use-after-free bugs caused by dev3_register_workInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71087 iavf: fix off-by-one issues in iavf_config_rss_reg()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68814 io_uring: fix filename leak in __io_openat_prep()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68772 f2fs: fix to avoid updating compression context during writebackInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68816 net/mlx5: fw_tracer, Validate format string parametersInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68794 iomap: adjust read range correctly for non-block-aligned positionsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2026-0861 Integer overflow in memalign leads to heap corruptionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71116 libceph: make decode_pool() more resilient against corrupted osdmapsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68764 NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flagsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68765 mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68757 drm/vgem-fence: Fix potential deadlock on releaseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68803 NFSD: NFSv4 file creation neglects setting ACLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71095 net: stmmac: fix the crash issue for zero copy XDP_TX actionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68796 f2fs: fix to avoid updating zero-sized extent in extent cacheInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68806 ksmbd: fix buffer validation by including null terminator size in EA lengthInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68767 hfsplus: Verify inode mode when loading from diskInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68789 hwmon: (ibmpex) fix use-after-free in high/low storeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71089 iommu: disable SVA when CONFIG_X86 is setInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71093 e1000: fix OOB in e1000_tbi_should_accept()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68785 net: openvswitch: fix middle attribute validation in push_nsh() actionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71079 net: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_writeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71082 Bluetooth: btusb: revert use of devm_kzalloc in btusbInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68778 btrfs: don't log conflicting inode if it's a dir moved in the current transactionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71096 RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctlyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71073 Input: lkkbd - disable pending work before freeing deviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68798 perf/x86/amd: Check event before enable to avoid GPFInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68768 inet: frags: flush pending skbs in fqdir_pre_exit()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68782 scsi: target: Reset t_task_cdb pointer in error caseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68801 mlxsw: spectrum_router: Fix neighbour use-after-freeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71083 drm/ttm: Avoid NULL pointer deref for evicted BOsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68783 ALSA: usb-mixer: us16x08: validate meter packet indicesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71068 svcrdma: bound check rq_pages index in inline pathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68800 mlxsw: spectrum_mr: Fix use-after-free when updating multicast route statsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68787 netrom: Fix memory leak in nr_sendmsg()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68769 f2fs: fix return value of f2fs_recover_fsync_data()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71075 scsi: aic94xx: fix use-after-free in device removal pathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71097 ipv4: Fix reference count leak when using error routes with nexthop objectsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68818 scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path"Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68795 ethtool: Avoid overflowing userspace buffer on stats queryInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68773 spi: fsl-cpm: Check length parity before switching to 16 bit modeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71084 RDMA/cm: Fix leaking the multicast GID table referenceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68809 ksmbd: vfs: fix race on m_flags in vfs_cacheInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68815 net/sched: ets: Remove drr class from the active list if it changes to strictInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68774 hfsplus: fix missing hfs_bnode_get() in __hfs_bnode_createInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68788 fsnotify: do not generate ACCESS/MODIFY events on child for special filesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68777 Input: ti_am335x_tsc - fix off-by-one error in wire_order validationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71088 mptcp: fallback earlier on simult connectionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68775 net/handshake: duplicate handshake cancellations leak socketInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68797 char: applicom: fix NULL pointer dereference in ac_ioctlInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68776 net/hsr: fix NULL pointer dereference in prp_get_untagged_frame()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71091 team: fix check for port enabled in team_queue_override_port_prio_changed()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71094 net: usb: asix: validate PHY address before useInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71069 f2fs: invalidate dentry cache on failed whiteout creationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68780 sched/deadline: only set free_cpus for online runqueuesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71136 media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71111 hwmon: (w83791d) Convert macros to functions to avoid TOCTOUInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71118 ACPICA: Avoid walking the Namespace if start_node is NULLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-71119 powerpc/kexec: Enable SMT before waking offline CPUsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-2880 Incorrect sanitization of forwarded query parameters in net/http/httputilInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-3171 Memory handling vulnerability in ProtocolBuffers Java core and liteInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-32149 Denial of service via crafted Accept-Language header in golang.org/x/text/languageInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-41715 Memory exhaustion when compiling regular expressions in regexp/syntaxInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-43680 In libexpat through 2.4.9 there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-2879 Unbounded memory consumption when reading headers in archive/tarInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-2928 An option refcount overflow exists in dhcpdInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2020-25576 An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-26160 jwt-go before 4.0.0-preview1 allows attackers to bypass intended access restrictions in situations with []string{} for m["aud"] (which is allowed by the specification). Because the type assertion fails "" is the value of aud. This is a security problem if the JWT token is presented to a service that lacks its own audience check.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2014-10402 An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-19076 A memory leak in the nfp_abm_u32_knode_replace() function in drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before 5.3.6 allows attackers to cause a denial of service (memory consumption) aka CID-78beef629fd9. NOTE: This has been argued as not a valid vulnerability. The upstream commit 78beef629fd9 was revertedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2021-28211 A heap overflow in LzmaUefiDecompressGetInfo function in EDK II.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-32923 HashiCorp Vault and Vault Enterprise allowed the renewal of nearly-expired token leases and dynamic secret leases (specifically those within 1 second of their maximum TTL) which caused them to be incorrectly treated as non-expiring during subsequent use. Fixed in 1.5.9 1.6.5 and 1.7.2.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-33503 An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component the authority regular expression exhibits catastrophic backtracking causing a denial of service if a URL were passed as a parameter or redirected to via an HTTP redirect.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-28210 An unlimited recursion in DxeCore in EDK II.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-28493 Regular Expression Denial of Service (ReDoS)Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-1292 The c_rehash script allows command injectionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-26691 A logic issue was addressed with improved state management. This issue is fixed in Security Update 2022-003 Catalina macOS Monterey 12.3 macOS Big Sur 11.6.5. An application may be able to gain elevated privileges.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-30594 The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-3611 A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host resulting in a denial of service condition. The highest threat from this vulnerability is to system availability. This flaw affects QEMU versions prior to 7.0.0.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-30767 nfs_lookup_reply in net/nfs.c in Das U-Boot through 2022.04 (and through 2022.07-rc2) has an unbounded memcpy with a failed length check, leading to a buffer overflow. NOTE: this issue exists because of an incorrect fix for CVE-2019-14196.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-29526 Go before 1.17.10 and 1.18.x before 1.18.2 has Incorrect Privilege Assignment. When called with a non-zero flags parameter the Faccessat function could incorrectly report that a file is accessible.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-40633 A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-30552 Das U-Boot 2022.01 has a Buffer Overflow.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-34835 In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer overflow in the "i2c md" command enables the corruption of the return address pointer of the do_i2c_md function.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-30790 Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68336 locking/spinlock/debug: Fix data-race in do_raw_write_lockInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68338 net: dsa: microchip: Don't free uninitialized ksz_irqInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-40339 drm/amdgpu: fix nullptr err of vm_handle_movedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68296 drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setupInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68337 jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corruptedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68334 platform/x86/amd/pmc: Add support for Van Gogh SoCInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-68291 mptcp: Initialise rcv_mss before calling tcp_send_active_reset() in mptcp_do_fastclose().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2017-7718 hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functions.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-0778 Infinite loop in BN_mod_sqrt() reachable when parsing certificatesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2021-43666 A Denial of Service vulnerability exists in mbed TLS 3.0.0 and earlier in the mbedtls_pkcs12_derivation function when an input password's length is 0.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-38578 Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-24921 regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via a deeply nested expression.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-0811 A flaw was found in CRI-O in the way it set kernel options for a pod. This issue allows anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime to achieve a container escape and arbitrary code execution as root on the cluster node, where the malicious pod was deployed.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-45480 An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-45707 An issue was discovered in the nix crate 0.16.0 and later before 0.20.2 0.21.x before 0.21.2 and 0.22.x before 0.22.2 for Rust. unistd::getgrouplist has an out-of-bounds write if a user is in more than 16 /etc/groups groups.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-44732 Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtls_ssl_set_session() failure.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2018-1000215 Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of ServiceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-23523 rust-vmm linux-loader vulnerable to Out-of-bounds ReadInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-40898 An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-41717 Excessive memory growth in net/http and golang.org/x/net/http2Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-35256 The llhttp parser in the http module in Node v18.7.0 does not correctly handle header fields that are not terminated with CLRF. This may result in HTTP Request Smuggling.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-45410 When a ServiceWorker intercepted a request with <code>FetchEvent</code>, the origin of the request was lost after the ServiceWorker took ownership of it. This had the effect of negating SameSite cookie protections. This was addressed in the spec and then in browsers. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-41724 Panic on large handshake records in crypto/tlsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-41722 Path traversal on Windows in path/filepathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET curl would use a heap-allocated struct after it had been freed in its transfer shutdown code path.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-46023 An Untrusted Pointer Dereference was discovered in function mrb_vm_exec in mruby before 3.1.0-rc. The vulnerability causes a segmentation fault and application crash.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-0286 X.400 address type confusion in X.509 GeneralNameInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-25193 hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-41725 Excessive resource consumption in mime/multipartInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-31394 Hyperium Hyper before 0.14.19 does not allow for customization of the max_header_list_size method in the H2 third-party software allowing attackers to perform HTTP2 attacks.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-4450 Double free after calling PEM_read_bio_exInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6174 When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-20260 ClamAV PDF Scanning Buffer Overflow VulnerabilityInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38051 smb: client: Fix use-after-free in cifs_fill_direntInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38075 scsi: target: iscsi: Fix timeout on deleted connectionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38078 ALSA: pcm: Fix race of buffer access at PCM OSS layerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38084 mm/hugetlb: unshare page tables during VMA split, not beforeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38089 sunrpc: handle SVC_GARBAGE during svc auth processing as auth errorInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38090 drivers/rapidio/rio_cm.c: prevent possible heap overwriteInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-4748 Absolute path traversal in zip:unzip/1,2Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50181 urllib3 redirects are not disabled when retries are disabled on PoolManager instantiationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-52555 CephFS Permission Escalation Vulnerability in Ceph Fuse mounted FSInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-5318 Libssh: out-of-bounds read in sftp_handle()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-6020 Linux-pam: linux-pam directory traversalInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-6199 Gdk-pixbuf: uninitialized memory disclosure in gdkpixbuf gif lzw decoderInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-6170 Libxml2: stack buffer overflow in xmllint interactive shell command handlingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-4563 Nodes can bypass dynamic resource allocation authorization checksInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50182 urllib3 does not control redirects in browsers and Node.jsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32462 Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-11584 cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. This is used for the "/run/cloud-init/hook-hotplug-cmd" FIFO. An unprivileged user could trigger hotplug-hook commands.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32463 Sudo before 1.9.17p1 allows local users to obtain root accessInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38039 net/mlx5e: Avoid WARN_ON when configuring MQPRIO with HTB offload enabledInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38068 crypto: lzo - Fix compression buffer overrunInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38083 net_sched: prio: fix a race in prio_tune()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38085 mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast raceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38086 net: ch9200: fix uninitialised access during mii_nway_restartInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38087 net/sched: fix use-after-free in taprio_dev_notifierInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38088 powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmapInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-49794 Libxml: heap use after free (uaf) leads to denial of service (dos)Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-49796 Libxml: type confusion leads to denial of service (dos)Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-52939 Potential heap-buffer overflow vulnerability in NotepadNextInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-5455 Possible denial of service when passing malformed data in a URL to qDecodeDataUrlInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-6021 Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-6069 HTMLParser quadratic complexity when processing malformed inputsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38042 dmaengine: ti: k3-udma-glue: Drop skip_fdq argument from k3_udma_glue_reset_rx_chnInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-40914 Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-33099 An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-33103 Das U-Boot from v2020.10 to v2022.07-rc3 was discovered to contain an out-of-bounds write via the function sqfs_readdir().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-33967 squashfs filesystem implementation of U-Boot versions from v2020.10-rc2 to v2022.07-rc5 contains a heap-based buffer overflow vulnerability due to a defect in the metadata reading process. Loading a specially crafted squashfs image may lead to a denial-of-service (DoS) condition or arbitrary code execution.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-34169 Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheetsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2020-25657 A flaw was found in all released versions of m2crypto where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-40660 Opensc: potential pin bypass when card tracks its own login stateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-42365 A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-4535 Opensc: out-of-bounds read in myeid driver handling encryption using symmetric keysInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-45857 An issue discovered in Axios 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the HTTP header X-XSRF-TOKEN for every request made to any host allowing attackers to view sensitive information.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-40661 Opensc: multiple memory issues with pkcs15-init (enrollment tool)Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-42363 A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-42366 A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the next_token function at awk.c:1159.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-47234 An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when processing a crafted BGP UPDATE message with a MP_UNREACH_NLRI attribute and additional NLRI data (that lacks mandatory path attributes).Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-47235 An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed because the presence of EOR does not lead to a treat-as-withdraw outcome.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-48161 Buffer Overflow vulnerability in GifLib Project GifLib v.5.2.1 allows a local attacker to obtain sensitive information via the DumpSCreen2RGB function in gif2rgb.cInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-49083 cryptography vulnerable to NULL-dereference when loading PKCS7 certificatesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-45283 Insecure parsing of Windows paths with a \??\ prefix in path/filepathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-42364 A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-53213 net: usb: lan78xx: Fix double free issue with interrupt buffer allocationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-53227 scsi: bfa: Fix use-after-free in bfad_im_module_exit()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56606 af_packet: avoid erroring out after sock_init_data() in packet_create()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56614 xsk: fix OOB map writes when deleting elementsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56615 bpf: fix OOB devmap writes when deleting elementsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56635 net: avoid potential UAF in default_operstate()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56741 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-53239 ALSA: 6fire: Release resources at card releaseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56548 hfsplus: don't query the device logical block size multiple timesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56596 jfs: fix array-index-out-of-bounds in jfs_readdirInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56708 EDAC/igen6: Avoid segmentation fault on module unloadInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-53203 usb: typec: fix potential array underflow in ucsi_ccg_sync_control()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-53170 block: fix uaf for flush rq while iterating tagsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56599 wifi: ath10k: avoid NULL pointer error during sdio removeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-53103 hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-53150 ALSA: usb-audio: Fix out of bounds reads when finding clock sourcesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-53156 wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-53166 block, bfq: fix bfqq uaf in bfq_limit_depth()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56631 scsi: sg: Fix slab-use-after-free read in sg_release()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56642 tipc: Fix use-after-free of kernel socket in cleanup_bearer().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56739 rtc: check if __rtc_read_time was successful in rtc_timer_do_work()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56746 fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56626 ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_writeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56627 ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_readInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-58160 Tracing logging user input may result in poisoning logs with ANSI escape sequencesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2010-4756 The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-11834 cJSON before 1.7.11 allows out-of-bounds access related to \x00 in a string literal.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-11835 cJSON before 1.7.11 allows out-of-bounds access related to multiline comments.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26582 net: tls: fix use-after-free with partial reads and async decryptInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26588 LoongArch: BPF: Prevent out-of-bounds memory accessInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26602 sched/membarrier: reduce the ability to hammer on sys_membarrierInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-23807 Apache Xerces C++: Use-after-free on external DTD scanInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0684 Coreutils: heap overflow in split --line-bytes with very long linesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-24758 Proxy-Authorization header not cleared on cross-origin redirect in fetch in UndiciInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26584 net: tls: handle backlogging of crypto requestsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26585 tls: fix race between tx work scheduling and socket closeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26587 net: netdevsim: don't try to destroy PHC on VFsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26596 net: dsa: fix netdev_priv() dereference before check on non-DSA netdevice eventsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52434 smb: client: fix potential OOBs in smb2_parse_contexts()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52435 net: prevent mss overflow in skb_segment()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2011-4969 Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2018-1129 A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster network who is able to alter the message payload was able to bypass signature checks done by cephx protocol. Ceph branches master mimic luminous and jewel are believed to be vulnerable.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2018-14040 In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attributeIn Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attributeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47670 ocfs2: add bounds checking to ocfs2_xattr_find_entry()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47699 nilfs2: fix potential null-ptr-deref in nilfs_btree_insert()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47705 block: fix potential invalid pointer dereference in blk_add_partitionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47712 wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_paramInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47723 jfs: fix out-of-bounds in dbNextAG() and diAlloc()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47748 vhost_vdpa: assign irq bypass producer token correctlyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49860 ACPI: sysfs: validate return type of _STR methodInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49862 powercap: intel_rapl: Fix off by one in get_rpi()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49868 btrfs: fix a NULL pointer dereference when failed to start a new trasacntionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49871 Input: adp5589-keys - fix NULL pointer dereferenceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49875 nfsd: map the EBADMSG to nfserr_io to avoid warningInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49883 ext4: aovid use-after-free in ext4_ext_insert_extent()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49889 ext4: avoid use-after-free in ext4_ext_show_leaf()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49895 drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49924 fbdev: pxafb: Fix possible use after free in pxafb_task()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49936 net/xen-netback: prevent UAF in xenvif_flush_hash()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49957 ocfs2: fix null-ptr-deref when journal load failed.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49962 ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49981 media: venus: fix use after free bug in venus_remove due to race conditionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49985 i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resumeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49991 drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49997 net: ethernet: lantiq_etop: fix memory disclosureInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50015 ext4: dax: fix overflowing extents beyond inode size when partially writingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50033 slip: make slhc_remember() more robust against malicious packetsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50035 ppp: fix ppp_async_encode() illegal accessInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50039 net/sched: accept TCA_STAB only for root qdiscInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50041 i40e: Fix macvlan leak by synchronizing access to mac_filter_hashInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50045 netfilter: br_netfilter: fix panic with metadata_dst skbInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50049 drm/amd/display: Check null pointer before dereferencing seInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50058 serial: protect uart_port_dtr_rts() in uart_shutdown() tooInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50082 blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function raceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52917 ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50615 TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50614 TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50613 libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpeg_l3_encode.c mpeg_l3_encoder_close.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47671 USB: usbtmc: prevent kernel-usb-infoleakInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47672 wifi: iwlwifi: mvm: don't wait for tx queues if firmware is deadInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47691 f2fs: fix to avoid use-after-free in f2fs_stop_gc_thread()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47696 RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependencyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47701 ext4: avoid OOB when system.data xattr changes underneath the filesystemInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47706 block bfq: fix possible UAF for bfqq->bic with merge chainInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47707 ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47710 sock_map: Add a cond_resched() in sock_hash_free()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47713 wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47718 wifi: rtw88: always wait for both firmware loading attemptsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47730 crypto: hisilicon/qm - inject error before stopping queueInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47734 bonding: Fix unnecessary warnings and logs from bond_xdp_get_xmit_slave()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47739 padata: use integer wrap around to prevent deadlock on seq_nr overflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49767 Werkzeug possible resource exhaustion when parsing file data in formsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49854 block bfq: fix uaf for accessing waker_bfqq after splittingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49863 vhost/scsi: null-ptr-dereference in vhost_scsi_get_req()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49867 btrfs: wait for fixup workers before stopping cleaner kthread during umountInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49877 ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49879 drm: omapdrm: Add missing check for alloc_ordered_workqueueInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49881 ext4: update orig_path in ext4_find_extent()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49884 ext4: fix slab-use-after-free in ext4_split_extent_at()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49890 drm/amd/pm: ensure the fw_info is not null before using itInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49892 drm/amd/display: Initialize get_bytes_per_element's default to 1Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49894 drm/amd/display: Fix index out of bounds in degamma hardware format translationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49896 drm/amd/display: Check stream before comparing themInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49900 jfs: Fix uninit-value access of new_ea in ea_bufferInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49907 drm/amd/display: Check null pointers before using dc->clk_mgrInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49913 drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_streamInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49930 wifi: ath11k: fix array out-of-bound access in SoC statsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49931 wifi: ath12k: fix array out-of-bound access in SoC statsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49960 ext4: fix timer use-after-free on failed mountInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49969 drm/amd/display: Fix index out of bounds in DCN30 color transformationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49975 uprobes: fix kernel info leak via "[uprobes]" vmaInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49977 net: stmmac: Fix zero-division error when disabling tc cbsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49982 aoe: fix the potential use-after-free problem in more placesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49983 ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-freeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49989 drm/amd/display: fix double free issue during amdgpu module unloadInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49992 drm/stm: Avoid use-after-free issues with crtc and planeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49995 tipc: guard against string buffer overrunInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49996 cifs: Fix buffer overflow when parsing NFS reparse pointsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50000 net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50013 exfat: fix memory leak in exfat_load_bitmap()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50031 drm/v3d: Stop the active perfmon before being destroyedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50036 net: do not delay dst_entries_add() in dst_release()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50038 netfilter: xtables: avoid NFPROTO_UNSPEC where neededInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50040 igb: Do not bring the device up after non-fatal errorInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50044 Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_changeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50046 NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50059 ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race conditionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50061 i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race ConditionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50083 tcp: fix mptcp DSS corruption due to large pmtu xmitInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50602 An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-50067 uprobe: avoid out-of-bounds memory access of fetching argsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-10041 Pam: libpam: libpam vulnerable to read hashed passwordInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-29038 tpm2 does not detect if quote was not generated by TPMInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-29040 Fapi Verify Quote: Does not detect if quote was not generated by TPMInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36968 Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-37370 In MIT Kerberos 5 (aka krb5) before 1.21.3 an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token causing the unwrapped token to appear truncated to the application.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-4968 netplan leaks the private key of wireguard to local users.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36972 af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-38540 bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwqInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-38541 of: module: add buffer overflow check in of_modalias()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-5642 Buffer overread when using an empty list with SSLContext.set_npn_protocols()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-29039 Missing check in tpm2_checkquote allows attackers to misrepresent the TPM stateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36478 null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues'Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36965 remoteproc: mediatek: Make sure IPI buffer fits in L2TCMInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36967 KEYS: trusted: Fix memory leak in tpm2_key_encode()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36969 drm/amd/display: Fix division by zero in setup_dsc_configInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-37371 In MIT Kerberos 5 (aka krb5) before 1.21.3 an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-38381 nfc: nci: Fix uninit-value in nci_rx_workInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6257 HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config ManipulationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-48716 ASoC: codecs: wcd938x: fix incorrect used of portidInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2012-2677 Integer overflow in the ordered_malloc function in boost/pool/pool.hpp in Boost PoolInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-2650 Possible DoS translating ASN.1 object identifiersInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-31147 Insufficient randomness in generation of DNS query IDs in c-aresInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-24539 Improper sanitization of CSS values in html/templateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-29932 llvm-project commit fdbc55a5 was discovered to contain a segmentation fault via the component mlir::IROperand<mlir::OpOperand.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-31130 Buffer Underwrite in ares_inet_net_pton()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-24540 Improper handling of JavaScript whitespace in html/templateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-29400 Improper handling of empty HTML attributes in html/templateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-25881 This affects versions of the package http-cache-semantics before 4.1.1. The issue can be exploited via malicious request header values sent to a server when that server reads the cache policy from the request using this library.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-3650 A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in the form of a crash dump and dump privileged information.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-4415 A vulnerability was found in systemd. This security flaw can cause a local information leak due to systemd-coredump not respecting the fs.suid_dumpable kernel setting.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-48303 GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jumpInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-45639 OS Command injection vulnerability in sleuthkit fls tool 4.11.1 allows attackers to execute arbitrary commands via a crafted value to the m parameter. NOTE: third parties have disputed this because there is no analysis showing that the backtick command executes outside the context of the user account that entered the command line.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-46456 NASM v2.16 was discovered to contain a global buffer overflow in the component dbgdbg_typevalue at /output/outdbg.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-46457 NASM v2.16 was discovered to contain a segmentation violation in the component ieee_write_file at /output/outieee.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-19926 multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-19880.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-19317 lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-42836 GJSON before 1.9.3 allows a ReDoS (regular expression denial of service) attack.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3255 Qemu: vnc: infinite loop in inflate_buffer() leads to denial of serviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3301 Triggerable assertion due to race condition in hot-unplugInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3341 A stack exhaustion flaw in control channel code may cause named to terminate unexpectedlyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-42821 github.com/gomarkdown/markdown Out-of-bounds Read while parsing citationsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-44488 VP9 in libvpx before 1.13.1 mishandles widths leading to a crash related to encoding.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-4806 Glibc: potential use-after-free in getaddrinfo()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-5156 Glibc: dos due to memory leak in getaddrinfo.cInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39318 Improper handling of HTML-like comments in script contexts in html/templateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39319 Improper handling of special tags within script contexts in html/templateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-25585 Field `file_table` of `struct module *module` is uninitializedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-4527 Glibc: stack read overflow in getaddrinfo in no-aaaa modeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-44270 An issue was discovered in PostCSS before 8.4.31. The vulnerability affects linters using PostCSS to parse external untrusted CSS. An attacker can prepare CSS in such a way that it will contains parts parsed by PostCSS as a CSS comment. After processing by PostCSS, it will be included in the PostCSS output in CSS nodes (rules, properties) despite being included in a comment.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-41330 Unsafe deserialization in knplabs/knp-snappyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-4580 Push notifications stored on disk in private browsing mode were not being encrypted potentially allowing the leak of sensitive information. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-41915 OpenPMIx PMIx before 4.2.6 and 5.0.x before 5.0.1 allows attackers to obtain ownership of arbitrary files via a race condition during execution of library code with UID 0.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-42467 QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256. This stops QEMU and the guest immediately.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-4504 OpenPrinting CUPS/libppd Postscript Parsing Heap OverflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-4807 POLY1305 MAC implementation corrupts XMM registers on WindowsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-25584 Out of bounds read in parse_module function in bfd/vms-alpha.cInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-25588 Field `the_bfd` of `asymbol` is uninitialized in function `bfd_mach_o_get_synthetic_symtab`Information published.MSRC.MICROSOFT.COM
18 FebCVE-2016-9179 It was found that Lynx doesn't parse the authority component of the URL correctlyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43799 send vulnerable to template injection that can lead to XSSInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44952 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44971 net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44974 mptcp: pm: avoid possible UaF when selecting endpInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44983 netfilter: flowtable: validate vlan headerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44989 bonding: fix xfrm real_dev null pointer dereferenceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44998 atm: idt77252: prevent use after free in dequeue_rx()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45002 rtla/osnoise: Prevent NULL dereference in error handlingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45006 xhci: Fix Panther point NULL pointer deref at full-speed re-enumerationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45010 mptcp: pm: only mark 'subflow' endp as availableInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45021 memcg_write_event_control(): fix a user-triggerable oopsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45025 fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHAREInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45590 body-parser vulnerable to denial of service when url encoding is enabledInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-46673 scsi: aacraid: Fix double-free on probe failureInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-46677 gtp: fix a potential NULL pointer dereferenceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6119 Possible denial of service in X.509 name checksInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-34158 Stack exhaustion in Parse in go/build/constraintInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-46733 btrfs: fix qgroup reserve leaks in cow_file_rangeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-34156 Stack exhaustion in Decoder.Decode in encoding/gobInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-34155 Stack exhaustion in all Parse functions in go/parserInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-46729 drm/amd/display: Fix incorrect size calculation for loopInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-46748 cachefiles: Set the max subreq size for cache writes to MAX_RW_COUNTInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-20506 ClamAV Privilege Handling Escalation VulnerabilityInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43796 express vulnerable to XSS via response.redirect()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43800 serve-static affected by template injection that can lead to XSSInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44985 ipv6: prevent possible UAF in ip6_xmit()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44986 ipv6: fix possible UAF in ip6_finish_output2()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44990 bonding: fix null pointer deref in bond_ipsec_offload_okInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44995 net: hns3: fix a deadlock problem when config TC during resettingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44997 net: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44999 gtp: pull network headers in gtp_dev_xmit()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45000 fs/netfs/fscache_cookie: add missing "n_accesses" checkInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45009 mptcp: pm: only decrement add_addr_accepted for MPJ reqInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45015 drm/msm/dpu: move dpu_encoder's connector assignment to atomic_enable()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45026 s390/dasd: fix error recovery leading to data corruption on ESE devicesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45296 path-to-regexp outputs backtracking regular expressionsInformation published.MSRC.MICROSOFT.COM
18 Feb KEVCVE-2024-45506 HAProxy 2.9.x before 2.9.10 3.0.x before 3.0.4 and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding (h2_send loop) under a certain set of conditions as exploited in the wild in 2024.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-46674 usb: dwc3: st: fix probed platform device ref count on probe error pathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6232 Regular-expression DoS when parsing TarFile headersInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45619 Libopensc: incorrect handling length of buffers or files in libopenscInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-29404 Improper handling of non-optional LDFLAGS in go command with cgo in cmd/goInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-32324 OpenPrinting CUPS vulnerable to heap buffer overflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-25883 Versions of the package semver before 7.5.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the function new Range when untrusted user data is provided as a range.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-29402 Code injection via go command with cgo in cmd/goInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3338 Crash due to a null pointer dereference in the dn_nsp_send functionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-34241 CUPS vulnerable to use-after-free in cupsdAcceptClient()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-34411 The xml-rs crate before 0.8.14 for Rust and Crab allows a denial of service (panic) via an invalid <! token (such as <!DOCTYPEs/%<!A nesting) in an XML document. The earliest affected version is 0.8.9.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-29405 Improper sanitization of LDFLAGS with embedded spaces in go command with cgo in cmd/goInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-29403 Unsafe behavior in setuid/setgid binaries in runtimeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2019-10906 In Pallets Jinja before 2.10.1 str.format_map allows a sandbox escape.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2018-20505 SQLite 3.25.2 when queries are run on a table with a malformed PRIMARY KEY allows remote attackers to cause a denial of service (application crash) by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases).Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-11358 jQuery before 3.4.0 as used in Drupal Backdrop CMS and other products mishandles jQuery.extend(true {} ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property it could extend the native Object.prototype.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-23772 Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-21698 Uncontrolled Resource Consumption in promhttpInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-23806 Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-45853 MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename comment or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an affected zlib version and exposes the applicable MiniZip code through its compress API.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-46118 Denial of Service by publishing large messages over the HTTP APIInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-46853 In Memcached before 1.6.22 an off-by-one error exists when processing proxy requests in proxy mode if \n is used instead of \r\n.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-4911 Glibc: buffer overflow in ld.so leading to privilege escalationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39323 Arbitrary code execution during build via line directives in cmd/goInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39325 HTTP/2 rapid reset can cause excessive work in net/httpInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-45142 OpenTelemetry-Go Contrib has DoS vulnerability in otelhttp due to unbound cardinality metricsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-45322 libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in tree.c. NOTE: the vendor's position is "I don't think these issues are critical enough to warrant a CVE ID ... because an attacker typically can't control when memory allocations fail."Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-46129 xkeys Seal encryption used fixed key for all encryptionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-46136 Werkzeug vulnerable to high resource usage when parsing multipart/form-data containing a large part with CR/LF character at the beginningInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-46752 An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI data leading to a crash.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-46753 An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur for a crafted BGP UPDATE message without mandatory attributes e.g. one with only an unknown transit attribute.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-46852 In Memcached before 1.6.22 a buffer overflow exists when processing multiget requests in proxy mode if there are many spaces after the "get" substring.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2007-6109 Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function as demonstrated via a certain "emacs -batch -eval" command line.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-46146 Prometheus Exporter Toolkit vulnerable to basic authentication bypassInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-3510 Parsing issue in protobuf message-type extensionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-12058 Vulnerability in Keras Model.load_model Leading to Arbitrary Local File Loading and SSRFInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-61105 FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_link_info function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21919 sched/fair: Fix potential memory corruption in child_cfs_rq_on_listInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21922 ppp: Fix KMSAN uninit-value warning with bpfInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21923 HID: hid-steam: Fix use-after-free when detaching deviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21934 rapidio: fix an API misues when rio_add_net() failsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21941 drm/amd/display: Fix null check for pipe_ctx->plane_state in resource_build_scaling_paramsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21948 HID: appleir: Fix potential NULL dereference at raw event handleInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21951 bus: mhi: host: pci_generic: Use pci_try_reset_function() to avoid deadlockInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21969 Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmdInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21991 x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21993 iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22010 RDMA/hns: Fix soft lockup during bt pages loopInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22014 soc: qcom: pdr: Fix the potential deadlockInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-2784 Libsoup: heap buffer over-read in `skip_insignificant_space` when sniffing contentInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-31344 The giflib open-source component has a buffer overflow vulnerabilityInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32050 Libsoup: integer overflow in append_param_quotedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32051 Libsoup: segmentation fault when parsing malformed data uriInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32052 Libsoup: heap buffer overflow in sniff_unknown()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32386 Helm Allows A Specially Crafted Chart Archive To Cause Out Of Memory TerminationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22025 nfsd: put dl_stid if fail to queue dl_recallInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22043 ksmbd: add bounds check for durable handle contextInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22064 netfilter: nf_tables: don't unregister hook when table is dormantInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22126 md: fix mddev uaf while iterating all_mddevs listInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38575 ksmbd: use aead_request_free to match aead_request_allocInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22104 ibmvnic: Use kernel helpers for hex dumpsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-11235 Reference counting in php_request_shutdown causes Use-After-FreeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-29087 In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concat_ws() SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string (e.g., 2MB or more), an integer overflow occurs in calculating the size of the result buffer, and thus malloc may not allocate enough memory.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58093 PCI/ASPM: Fix link state exit during switch upstream function removalInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23133 wifi: ath11k: update channel list in reg notifier instead reg workerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-3416 Rust-openssl: rust-openssl use-after-free in `md::fetch` and `cipher::fetch`Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21917 usb: renesas_usbhs: Flush the notify_hotplug_workInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21943 gpio: aggregator: protect driver attr handlers against module unloadInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21957 scsi: qla1280: Fix kernel oops when debug level > 2Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21959 netfilter: nf_conncount: Fully initialize struct nf_conncount_tuple in insert_tree()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21981 ice: fix memory leak in aRFS after resetInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21996 drm/radeon: fix uninitialized size issue in radeon_vce_cs_parse()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22007 Bluetooth: Fix error code in chan_alloc_skb_cb()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32053 Libsoup: heap buffer overflows in sniff_feed_or_html() and skip_insignificant_space()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32728 In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21928 HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21979 wifi: cfg80211: cancel wiphy_work before freeing wiphyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22042 ksmbd: add bounds check for create lease contextInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22045 x86/mm: Fix flush_tlb_range() when used for zapping normal PMDsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22049 LoongArch: Increase ARCH_DMA_MINALIGN up to 16Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22057 net: decrease cached dst counters in dst_releaseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22060 net: mvpp2: Prevent parser TCAM memory corruptionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22073 spufs: fix a leak on spufs_new_file() failureInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22079 ocfs2: validate l_tree_depth to avoid out-of-bounds accessInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-3360 Glibc: glib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid iso 8601 timestamp with g_date_time_new_from_iso8601().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42259 drm/i915/gem: Fix Virtual Memory mapping boundaries calculationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42277 iommu: sprd: Avoid NULL deref in sprd_iommu_hw_enInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42289 scsi: qla2xxx: During vport delete send async logout explicitlyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43873 vhost/vsock: always initialize seqpacket_allowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43890 tracing: Fix overflow in get_free_elt()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43892 memcg: protect concurrent access to mem_cgroup_idrInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43894 drm/client: fix null pointer dereference in drm_client_modeset_probeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43914 md/raid5: avoid BUG_ON() while continue reshape after reassemblingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44946 kcm: Serialise kcm_sendmsg() for the same socket.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43849 soc: qcom: pdr: protect locator_addr with the main mutexInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44940 fou: remove warn in gue_gro_receive on unsupported protocolInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-48893 drm/i915/gt: Cleanup partial engine discovery failuresInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44938 jfs: Fix shift-out-of-bounds in dbDiscardAGInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52905 octeontx2-pf: Fix resource leakage in VF driver unbindInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42280 mISDN: Fix a use after free in hfcmulti_tx()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42286 scsi: qla2xxx: validate nvme_local_port correctlyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42287 scsi: qla2xxx: Complete command early within lockInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42288 scsi: qla2xxx: Fix for possible memory corruptionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43861 net: usb: qmi_wwan: fix memory leak for not ip packetsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43863 drm/vmwgfx: Fix a deadlock in dma buf fence pollingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43891 tracing: Have format file honor EVENT_FILE_FL_FREEDInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43893 serial: core: check uartclk for zero to avoid divide by zeroInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43897 net: drop bad gso csum_start and offset in virtio_net_hdrInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43841 wifi: virt_wifi: avoid reporting connection success with wrong SSIDInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43846 lib: objagg: Fix general protection faultInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-44931 gpio: prevent potential speculation leaks in gpio_device_get_desc()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43913 nvme: apple: fix device reference countingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42040 Buffer Overflow vulnerability in the net/bootp.c in DENEX U-Boot from its initial commit in 2002 (3861aa5) up to today on any platform allows an attacker on the local network to leak memory from four up to 32 bytes of memory stored behind the packet to the network depending on the later use of DHCP-provided parameters via crafted DHCP responses.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-28506 There is a heap-buffer-overflow in GIFLIB 5.2.1 function DumpScreen2RGB() in gif2rgb.c:298:45.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-28805 singlevar in lparser.c in Lua from (including) 5.4.0 up to (excluding) 5.4.4 lacks a certain luaK_exp2anyregup call leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-27536 Certificate.Verify in crypto/x509 in Go 1.18.x before 1.18.1 can be caused to panic on macOS when presented with certain malformed certificates. This allows a remote TLS server to cause a TLS client to panic.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-24795 Buffer Overflow and Integer Overflow in yajl-rubyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-28391 BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively the attacker could choose to change the terminal's colors.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-25178 LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an out-of-bounds read in the stack-overflow handler in lj_state.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50080 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50081 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50085 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50092 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50093 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50098 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50099 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50100 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23048 Apache HTTP Server: mod_ssl access control bypass with session resumptionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32989 Gnutls: vulnerability in gnutls sct extension parsingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38100 x86/iopl: Cure TIF_IO_BITMAP inconsistenciesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38102 VMCI: fix race between vmci_host_setup_notify and vmci_ctx_unset_notifyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38108 net_sched: red: fix a race in __red_change()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38110 net/mdiobus: Fix potential out-of-bounds clause 45 read/write accessInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38113 ACPI: CPPC: Fix NULL pointer dereference when nosmp is usedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38117 Bluetooth: MGMT: Protect mgmt_pending list with its own lockInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38127 ice: fix Tx scheduler error handling in XDP callbackInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38142 hwmon: (asus-ec-sensors) check sensor index in read_string()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38157 wifi: ath9k_htc: Abort software beacon handling if disabledInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38155 wifi: mt76: mt7915: Fix null-ptr-deref in mt7915_mmio_wed_init()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38160 clk: bcm: rpi: Add NULL check in raspberrypi_clk_register()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38163 f2fs: fix to do sanity check on sbi->total_valid_block_countInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38167 fs/ntfs3: handle hdr_first_de() return valueInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38174 thunderbolt: Do not double dequeue a configuration requestInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38173 crypto: marvell/cesa - Handle zero-length skcipher requestsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38183 net: lan743x: fix potential out-of-bounds write in lan743x_ptp_io_event_clock_get()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38184 tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38193 net_sched: sch_sfq: reject invalid perturb periodInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38200 i40e: fix MMIO write access to an invalid page in i40e_clear_hwInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38202 bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38212 ipc: fix to protect IPCS lookups using RCUInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38218 f2fs: fix to do sanity check on sit_bitmap_sizeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38222 ext4: inline: fix len overflow in ext4_prepare_inline_dataInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38226 media: vivid: Change the siize of the composingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38239 scsi: megaraid_sas: Fix invalid node indexInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38352 posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-48367 Redis DoS Vulnerability due to bad connection error handlingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-49630 Apache HTTP Server: mod_proxy_http2 denial of serviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-49812 Apache HTTP Server: mod_ssl TLS upgrade attackInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50096 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-53906 Vim has path traversal issue with zip.vim and special crafted zip archivesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-5987 Libssh: invalid return code for chacha20 poly1305 with openssl backendInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-6491 NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace PrefixInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-48924 Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38237 media: platform: exynos4-is: Add hardware sync wait to fimc_is_hw_change_mode()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-52496 Mbed TLS before 3.6.4 has a race condition in AESNI detection if certain compiler optimizations occur. An attacker may be able to extract an AES key from a multithreaded program, or perform a GCM forgery.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38261 riscv: save the SR_SUM status over switchesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38099 Bluetooth: Disable SCO support if READ_VOICE_SETTING is unsupported/brokenInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38129 page_pool: Fix use-after-free in page_pool_recycle_in_ringInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-7207 mruby nregs codegen.c scope_new heap-based overflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-5994 Cache poisoning via the ECS-enabled Rebirthday AttackInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38204 jfs: fix array-index-out-of-bounds read in add_missing_indicesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-25177 LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an unsinking of IR_FSTORE for NULL metatable, which leads to Denial of Service (DoS).Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-53605 The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::coded_input_stream::CodedInputStream::skip_group parsing of unknown fields in untrusted input.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-40913 Net::Dropbear versions through 0.16 for Perl contains a dependency that may be susceptible to an integer overflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38351 KVM: x86/hyper-v: Skip non-canonical addresses during PV TLB flushInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-7339 on-headers vulnerable to http response header manipulationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-25176 LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50077 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50079 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50082 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50086 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50087 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50094 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50104 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42516 Apache HTTP Server: HTTP response splittingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-43204 Apache HTTP Server: SSRF with mod_headers setting Content-Type headerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-47252 Apache HTTP Server: mod_ssl error log variable escapingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-1735 pgsql extension does not check for errors during escapingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32023 Redis allows out of bounds writes in hyperloglog commands leading to RCEInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32988 Gnutls: vulnerability in gnutls othername san exportInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-32990 Gnutls: vulnerability in gnutls certtool template parsingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38091 drm/amd/display: check stream id dml21 wrapper to get plane_idInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38092 ksmbd: use list_first_entry_or_null for opinfo_get_list()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38103 HID: usbhid: Eliminate recurrent out-of-bounds bug in usbhid_parse()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38107 net_sched: ets: fix a race in ets_qdisc_change()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38109 net/mlx5: Fix ECVF vports unload on shutdown flowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38111 net/mdiobus: Fix potential out-of-bounds read/write accessInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38112 net: Fix TOCTOU issue in sk_is_readable()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38115 net_sched: sch_sfq: fix a potential crash on gso_skb handlingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38119 scsi: core: ufs: Fix a hang in the error handlerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38122 gve: add missing NULL check for gve_alloc_pending_packet() in TX DQOInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38123 net: wwan: t7xx: Fix napi rx poll issueInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38135 serial: Fix potential null-ptr-deref in mlb_usio_probe()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38136 usb: renesas_usbhs: Reorder clock handling and power management in probeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38138 dmaengine: ti: Add NULL check in udma_probe()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38143 backlight: pm8941: Add NULL check in wled_configure()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38145 soc: aspeed: Add NULL check in aspeed_lpc_enable_snoop()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38146 net: openvswitch: Fix the dead loop of MPLS parseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38147 calipso: Don't call calipso functions for AF_INET sk.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38149 net: phy: clear phydev->devlink when the link is deletedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38153 net: usb: aqc111: fix error handling of usbnet read callsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38158 hisi_acc_vfio_pci: fix XQE dma address errorInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38159 wifi: rtw88: fix the 'para' buffer size to avoid reading out of boundsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38161 RDMA/mlx5: Fix error flow upon firmware failure for RQ destructionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38165 bpf, sockmap: Fix panic when calling skb_linearizeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38170 arm64/fpsimd: Discard stale CPU state when handling SME trapsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38180 net: atm: fix /proc/net/atm/lec handlingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38181 calipso: Fix null-ptr-deref in calipso_req_{set,del}attr().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38182 ublk: santizize the arguments from userspace when adding a deviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38185 atm: atmtcp: Free invalid length skb in atmtcp_c_send().Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38190 atm: Revert atm_account_tx() if copy_from_iter_full() fails.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38192 net: clear the dst when changing skb protocolInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38194 jffs2: check that raw node were preallocated before writing summaryInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38208 smb: client: add NULL check in automount_fullpathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38211 RDMA/iwcm: Fix use-after-free of work objects after cm_id destructionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38213 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38214 fbdev: Fix fb_set_var to prevent null-ptr-deref in fb_videomode_to_varInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38217 hwmon: (ftsteutates) Fix TOCTOU race in fts_read()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38219 f2fs: prevent kernel warning due to negative i_nlink from corrupted imageInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38220 ext4: only dirty folios when data journaling regular filesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38227 media: vidtv: Terminating the subsequent process of initialization failureInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38229 media: cxusb: no longer judge rbuf when the write failsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38231 nfsd: Initialize ssc before laundromat_work to prevent NULL dereferenceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38244 smb: client: fix potential deadlock when reconnecting channelsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38258 mm/damon/sysfs-schemes: free old damon_sysfs_scheme_filter->memcg_path on writeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38260 btrfs: handle csum tree error with rescue=ibadroots correctlyInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38274 fpga: fix potential null pointer deref in fpga_mgr_test_img_load_sgt()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38307 ASoC: Intel: avs: Verify content returned by parse_int_array()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38321 smb: Log an error when close_all_cached_dirs failsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38348 wifi: p54: prevent buffer-overflow in p54_rx_eeprom_readback()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-49809 mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTR_PACKET environment variable. NOTE: mtr on macOS may often have Sudo rules, as an indirect consequence of Homebrew not installing setuid binaries.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50083 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-50101 Vulnerability in the MySQL Server product of Oracle MySQLInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-53020 Apache HTTP Server: HTTP/2 DoS by Memory IncreaseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-53023 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication).Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-5351 Libssh: double free vulnerability in libssh key export functionsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-53547 Helm Chart Dependency Updating With Malicious Chart.yaml Content And Symlink Can Lead To Code ExecutionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-5372 Libssh: incorrect return code handling in ssh_kdf() in libsshInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-53905 Vim has path traversial issue with tar.vim and special crafted tar filesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-54090 Apache HTTP Server: 'RewriteCond expr' always evaluates to true in 2.4.64Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-6395 Gnutls: null pointer dereference in _gnutls_figure_common_ciphersuite()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-7519 Polkit: xml policy file with a large number of nested elements may lead to out-of-bounds writeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-7546 GNU Binutils elf.c bfd_elf_set_group_contents out-of-bounds writeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38098 drm/amd/display: Don't treat wb connector as physical in create_validate_stream_for_sinkInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-7395 Domain Name Validation Bypass with Apple Native Certificate ValidationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-7783 Usage of unsafe random function in form-data for choosing boundaryInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23266 NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the container, where an attacker could execute arbitrary code with elevated permissions. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, information disclosure, and denial of service.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-33195 Go before 1.15.13 and 1.16.x before 1.16.5 has functions for DNS lookups that do not validate replies from DNS servers and thus a return value may contain an unsafe injection (e.g. XSS) that does not conform to the RFC1035 format.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-33198 In Go before 1.15.13 and 1.16.x before 1.16.5 there can be a panic for a large exponent to the math/big.Rat SetString or UnmarshalText method.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-36475 An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). The calculations performed by mbedtls_mpi_exp_mod are not limited; thus, supplying overly large parameters could lead to denial of service when generating Diffie-Hellman key pairs.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-36476 An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS). There is missing zeroization of plaintext buffers in mbedtls_ssl_read to erase unused application data from memory.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-38190 An issue was discovered in the nalgebra crate before 0.27.1 for Rust. It allows out-of-bounds memory access because it does not ensure that the number of elements is equal to the product of the row count and column count.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-28216 BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-36478 An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). A NULL algorithm parameters entry looks identical to an array of REAL (size zero) and thus the certificate is considered valid. However, if the parameters do not match in any way, then the certificate should be considered invalid.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-38191 An issue was discovered in the tokio crate before 1.8.1 for Rust. Upon a JoinHandle::abort, a Task may be dropped in the wrong thread.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0760 A flood of DNS messages over TCP may make the server unstableInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-1737 BIND's database will be slow if a very large number of RRs exist at the same nameInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39472 xfs: fix log recovery buffer allocation for the legacy h_size fixupInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39474 mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAILInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39476 md/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDINGInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39480 kdb: Fix buffer overflow during tab-completeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39483 KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright maskedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39495 greybus: Fix use-after-free bug in gb_interface_release due to race condition.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39884 Apache HTTP Server: source code disclosure with handlers configured via AddTypeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-4076 Assertion failure when serving both stale cache data and authoritative zone contentInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-40902 jfs: xattr: fix buffer overflow for invalid xattrInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-41010 bpf: Fix too early release of tcx_entryInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-41184 In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1 an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42069 net: mana: Fix possible double free in error handling pathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42071 ionic: use dev_consume_skb_any outside of napiInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42073 mlxsw: spectrum_buffers: Fix memory corruptions on Spectrum-4 systemsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42077 ocfs2: fix DIO failure due to insufficient transaction creditsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42080 RDMA/restrack: Fix potential invalid address accessInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42082 xdp: Remove WARN() from __xdp_reg_mem_model()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42228 drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_relocInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6345 Remote Code Execution in pypa/setuptoolsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-48841 ice: fix NULL pointer dereference in ice_update_vsi_tx_ring_stats()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-40979 wifi: ath12k: fix kernel crash during resumeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-40647 Unintentional exposure of environment variables to subprocesses in sentry-sdkInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6612 CSP violations generated links in the console tab of the developer tools, pointing to the violating resource. This caused a DNS prefetch which leaked that a CSP violation happened. This vulnerability affects Firefox < 128 and Thunderbird < 128.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6603 In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory corruption. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6610 Form validation popups could capture escape key presses. Therefore, spamming form validation messages could be used to prevent users from exiting full-screen mode. This vulnerability affects Firefox < 128 and Thunderbird < 128.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6608 It was possible to move the cursor using pointerlock from an iframe. This allowed moving the cursor outside of the viewport and the Firefox window. This vulnerability affects Firefox < 128 and Thunderbird < 128.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-1975 SIG(0) can be used to exhaust CPU resourcesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36387 Apache HTTP Server: DoS by Null pointer in websocket over HTTP/2Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-3651 Denial of Service via Quadratic Complexity in kjd/idnaInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-37298 Potential memory exhaustion attack due to sparse slice deserializationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-38473 Apache HTTP Server proxy encoding problemInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39473 ASoC: SOF: ipc4-topology: Fix input format query of process modules without base extensionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39475 fbdev: savage: Handle err return when savagefb_check_var failedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39481 media: mc: Fix graph walk in media_pipeline_startInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39482 bcache: fix variable length array abuse in btree_iterInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39484 mmc: davinci: Don't strip remove function when driver is builtinInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39485 media: v4l: async: Properly re-initialise notifier entry in unregisterInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39494 ima: Fix use-after-free on a dentry's dname.nameInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39496 btrfs: zoned: fix use-after-free due to race with dev replaceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39894 OpenSSH 9.5 through 9.7 before 9.8 sometimes allows timing attacks against echo-off password entry (e.g. for su and Sudo) because of an ObscureKeystrokeTiming logic error. Similarly other timing attacks against keystroke entry could occur.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-39936 An issue was discovered in HTTP2 in Qt before 5.15.18 6.x before 6.2.13 6.3.x through 6.5.x before 6.5.7 and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early because the encrypted() signal has not yet been emitted and processed..Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-40725 Apache HTTP Server: source code disclosure with handlers configured via AddTypeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-41009 bpf: Fix overrunning reservations in ringbufInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-41011 drm/amdkfd: don't allow mapping the MMIO HDP page with large pagesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-41671 twisted.web has disordered HTTP pipeline responseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42068 bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42070 netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registersInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42074 ASoC: amd: acp: add a null check for chip_pdev structureInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42078 nfsd: initialise nfsd_info.mutex early.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42079 gfs2: Fix NULL pointer dereference in gfs2_log_flushInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42083 ionic: fix kernel panic due to multi-buffer handlingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42225 wifi: mt76: replace skb_put with skb_put_zeroInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42229 crypto: aeadcipher - zeroize key buffer after useInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-42230 powerpc/pseries: Fix scv instruction crash with kexecInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52340 The IPv6 implementation in the Linux kernel before 6.3 has a net/ipv6/route.c max_size threshold that can be consumed easily e.g. leading to a denial of service (network is unreachable errors) when IPv6 packets are sent in a loop via a raw socket.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-40965 i2c: lpi2c: Avoid calling clk_get_rate during transferInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-24791 Denial of service due to improper 100-continue handling in net/httpInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-24531 Output of "go env" does not sanitize values in cmd/goInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-4467 Qemu-kvm: 'qemu-img info' leads to host file read/writeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6505 Qemu-kvm: virtio-net: queue index out-of-bounds access in software rssInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-6611 A nested iframe, triggering a cross-site navigation, could send SameSite=Strict or Lax cookies. This vulnerability affects Firefox < 128 and Thunderbird < 128.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-0465 Invalid certificate policies in leaf certificates are silently ignoredInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-1544 Qemu: pvrdma: out-of-bounds read in pvrdma_ring_next_elem_read()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-4899 A vulnerability was found in zstd v1.4.10 where an attacker can supply empty string as an argument to the command line tool to cause buffer overrun.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-24532 Incorrect calculation on P256 curves in crypto/internal/nistecInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-28154 Webpack 5 before 5.76.0 does not avoid cross-realm object access. ImportParserPlugin.js mishandles the magic comment feature. An attacker who controls a property of an untrusted object can obtain access to the real global object.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-27537 A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads but there was no indication of this fact in the documentation. Due to missing mutexes or thread locks two threads sharing the same HSTS data could end up doing a double-free or use-after-free.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-28155 The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-4904 A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the validity of the input string which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-0330 Qemu: lsi53c895a: dma reentrancy issue leads to stack overflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-0778 A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-0664 A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to elevate their privileges on the system.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14249 dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackers to cause a denial of serviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14197 An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfs_read_reply.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14193 An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfs_readlink_reply, in the "if" block after calculating the new path length.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14203 An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14202 An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_readlink_reply.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14196 An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14201 An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_lookup_reply.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14194 An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv2 case.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14195 An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfs_readlink_reply in the "else" block after calculating the new path length.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14204 An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_umountall_reply.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14199 An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14192 An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14198 An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-14200 An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-24538 Backticks not treated as string delimiters in html/templateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2020-27545 libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-28163 libdwarf before 20201201 allows a dwarf_print_lines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-31484 CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-31486 HTTP::Tiny before 0.083 a Perl core module since 5.13.9 and available standalone on CPAN has an insecure default TLS configuration where users must opt in to verify certificates.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-24534 Excessive memory allocation in net/http and net/textprotoInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-24536 Excessive resource consumption in net/http, net/textproto and mime/multipartInformation published.MSRC.MICROSOFT.COM
18 FebCVE-1999-0817 Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2016-2781 chroot in GNU coreutils when used with --userspec allows local users to escape to the parent session via a crafted TIOCSTI ioctl call which pushes characters to the terminal's input buffer.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2016-8681 The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0340 Kernel: information disclosure in vhost/vhost.c:vhost_new_msg()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0409 Xorg-x11-server: selinux context corruptionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0562 Kernel: use-after-free after removing device in wb_inode_writeback_end in mm/page-writeback.cInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0565 Kernel: cifs filesystem decryption improper input validation remote code execution vulnerability in function receive_encrypted_standard of clientInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0639 Kernel: potential deadlock on &net->sctp.addr_wq_lock leading to dosInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0641 Kernel: deadlock leading to denial of service in tipc_crypto_key_revokeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-21646 Azure IoT Platform Device SDK Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-22195 Jinja vulnerable to Cross-Site Scripting (XSS)Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-23850 In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1 there can be an assertion failure and crash because a subvolume can be read out too soon after its root item is inserted upon subvolume creation.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-4001 Grub2: bypass the grub password protection featureInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-45237 Use of a Weak PseudoRandom Number Generator in EDK II Network PackageInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-49568 Maliciously crafted Git server replies can cause DoS on go-git clientsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-50711 `serde` deserialization for `FamStructWrapper` lacks bound checks that could potentially lead to out-of-bounds memory accessInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51042 In the Linux kernel before 6.4.12 amdgpu_cs_wait_all_fences in drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c has a fence use-after-free.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6531 Kernel: gc's deletion of an skb races with unix_stream_read_generic() leading to uafInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6816 Xorg-x11-server: heap buffer overflow in devicefocusevent and procxiquerypointerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-7192 Kernel: refcount leak in ctnetlink_create_conntrack()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-2586 It was discovered that a nft object or expression could reference a nft set on a different nft table leading to a use-after-free once that table was deleted.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-2588 It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51258 A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the new_Token function in the modules/preprocs/nasm/nasm-pp:1512.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6683 Qemu: vnc: null pointer dereference in qemu_clipboard_request()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6693 Qemu: virtio-net: stack buffer overflow in virtio_net_flush_tx()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6992 Memory corruption issues is Cloudflare zlib implementationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0553 Gnutls: incomplete fix for cve-2023-5981Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0567 Gnutls: rejects certificate chain with distributed trustInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0607 Kernel: nf_tables: pointer math issue in nft_byteorder_eval()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0646 Kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destinationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0775 Kernel: use-after-free while changing the mount option in __ext4_remount leadingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-22705 An issue was discovered in ksmbd in the Linux kernel before 6.6.10. smb2_get_data_area_len in fs/smb/server/smb2misc.c can cause an smb_strndup_from_utf16 out-of-bounds access because the relationship between Name data and CreateContexts data is mishandled.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-23307 Integer overflow in raid5_cache_count in Linux kernelInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-23849 In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1 there is an off-by-one error for an RDS_MSG_RX_DGRAM_TRACE_MAX comparison resulting in out-of-bounds access.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-23851 copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes and crash because of a missing param_kernel->data_size check. This is related to ctl_ioctl.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-40546 Shim: out-of-bounds read printing error messagesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-46343 In the Linux kernel before 6.5.9 there is a NULL pointer dereference in send_acknowledge in net/nfc/nci/spi.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-49295 quic-go's path validation mechanism can cause denial of serviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-49569 Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clientsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51043 In the Linux kernel before 6.4.5 drivers/gpu/drm/drm_atomic.c has a use-after-free during a race condition between a nonblocking atomic commit and a driver unload.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-51257 An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6040 An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 (netfilter: nf_tables: Reject tables of unsupported family)Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6129 POLY1305 MAC implementation corrupts vector registers on PowerPCInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6246 Glibc: heap-based buffer overflow in __vsyslog_internal()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6915 Kernel: null pointer dereference vulnerability in ida_free in lib/idr.cInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-2585 It was discovered that when exec'ing from a non-leader thread armed POSIX CPU timers would be left on a list but freed leading to a use-after-free.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-2602 io_uring UAF Unix SCM garbage collectionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-48619 An issue was discovered in drivers/input/input.c in the Linux kernel before 5.17.10. An attacker can cause a denial of service (panic) because input_set_capability mishandles the situation in which an event code falls outside of a bitmap.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0408 Xorg-x11-server: selinux unlabeled glx pbufferInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0752 A use-after-free crash could have occurred on macOS if a Firefox update were being applied on a very busy system. This could have resulted in an exploitable crash. This vulnerability affects Firefox < 122.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0741 An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21711 net/rose: prevent integer overflows in rose_setsockopt()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21731 nbd: don't allow reconnect after disconnectInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21736 nilfs2: fix possible int overflows in nilfs_fiemap()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21743 usbnet: ipheth: fix possible overflow in DPE length checkInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21744 wifi: brcmfmac: fix NULL pointer dereference in brcmf_txfinalize()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21748 ksmbd: fix integer overflows on 32 bit systemsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21749 net: rose: lock the socket in rose_bind()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21753 btrfs: fix use-after-free when attempting to join an aborted transactionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21761 openvswitch: use RCU protection in ovs_vport_cmd_fill_info()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21776 USB: hub: Ignore non-compliant devices with too many configs or interfacesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21779 KVM: x86: Reject Hyper-V's SEND_IPI hypercalls if local APIC isn't in-kernelInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21785 arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo arrayInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21787 team: better TEAM_OPTION_TYPE_STRING validationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21791 vrf: use RCU protection in l3mdev_l3_out()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21814 ptp: Ensure info->enable callback is always setInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57973 rdma/cxgb4: Prevent potential integer overflow on 32bitInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57978 media: imx-jpeg: Fix potential error pointer dereference in detach_pm()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57981 usb: xhci: Fix NULL pointer dereference on certain command abortsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58005 tpm: Change to kvalloc() in eventlog/acpi.cInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58010 binfmt_flat: Fix integer overflow bug on 32 bit systemsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58017 printk: Fix signed integer overflow when defining LOG_BUF_LEN_MAXInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58020 HID: multitouch: Add NULL check in mt_input_configuredInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-49728 ipv6: Fix signed integer overflow in __ip6_append_dataInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58007 soc: qcom: socinfo: Avoid out of bounds read of serial numberInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57852 firmware: qcom: scm: smc: Handle missing SCM deviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57975 btrfs: do proper folio cleanup when run_delalloc_nocow() failedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57256 An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-49108 clk: mediatek: Fix memory leaks on probeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-49125 drm/sprd: fix potential NULL dereferenceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57254 An integer overflow in sqfs_inode_size in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57257 A stack consumption issue in sqfs_size in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with deep symlink nesting.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21729 wifi: rtw89: fix race between cancel_hw_scan and hw_scan completionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57977 memcg: fix soft lockup in the OOM processInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21700 net: sched: Disallow replacing of child qdisc from one parent to anotherInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21718 net: rose: fix timer races against user threadsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21742 usbnet: ipheth: use static NDP16 location in URBInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21745 blk-cgroup: Fix class @block_class's subsystem refcount leakageInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21780 drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21782 orangefs: fix a oob in orangefs_debug_writeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21789 LoongArch: csum: Fix OoB access in IP checksum code for negative lengthsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21794 HID: hid-thrustmaster: fix stack-out-of-bounds read in usb_check_int_endpoints()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21820 tty: xilinx_uartps: split sysrq handlingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57834 media: vidtv: Fix a null-ptr-deref in vidtv_mux_stop_threadInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57980 media: uvcvideo: Fix double free in error pathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58002 media: uvcvideo: Remove dangling pointersInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-49636 vlan: fix memory leak in vlan_newlink()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-54458 scsi: ufs: bsg: Set bsg_queue to NULL after removalInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21715 net: davicom: fix UAF in dm9000_drv_removeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21722 nilfs2: do not force clear folio if buffer is referencedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21735 NFC: nci: Add bounds checking in nci_hci_create_pipe()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-52560 fs/ntfs3: Mark inode as bad as soon as error detected in mi_enum_attr()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58015 wifi: ath12k: Fix for out-of bound access errorInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57255 An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57259 sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57258 Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21751 net/mlx5: HWS, change error flow on matcher disconnectInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21739 scsi: ufs: core: Fix use-after free in init error and remove pathsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2020-24347 njs through 0.4.3, used in NGINX, has an out-of-bounds read in njs_lvlhsh_level_find in njs_lvlhsh.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-3447 Qemu: sdhci: heap buffer overflow in sdhci_write_dataport()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-15586 Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers as demonstrated by the httputil.ReverseProxy Handler because it reads a request body and writes a response at the same time.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-16168 In SQLite through 3.29.0 whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field aka a "severe division by zero in the query planner."Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-16276 Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP Request Smuggling.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-16707 Hunspell 1.7.0 has an invalid read operation in SuggestMgr::leftcommonsubstring in suggestmgr.cxx.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-16910 Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times. (For Mbed TLS, the fix is also available in versions 2.7.12 and 2.16.3.)Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-1941 Out of Memory issue in ProtocolBuffers for cpp and pythonInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-27664 In net/http in Go before 1.18.6 and 1.19.x before 1.19.1 attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-38178 Memory leaks in EdDSA DNSSEC verification codeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2021-43565 The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-2795 Processing large delegations may severely degrade resolver performanceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-2995 Incorrect handling of the supplementary groups in the CRI-O container engine might lead to sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute a binary code in that container.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-38177 Memory leak in ECDSA DNSSEC verification codeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2015-8472 Buffer overflow in libpng allows remote attackers to cause a denial of serviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56757 Bluetooth: btusb: mediatek: add intf release flow when usb disconnectInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-0840 GNU Binutils objdump.c disassemble_bytes stack-based overflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21613 go-git has an Argument Injection via the URL fieldInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21614 go-git clients vulnerable to DoS via maliciously crafted Git server repliesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21665 filemap: avoid truncating 64-bit offset to 32 bitsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21666 vsock: prevent null-ptr-deref in vsock_*[has_data|has_space]Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-22150 Undici Uses Insufficiently Random ValuesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23090 Rejected reason: This CVE record has been withdrawn due to a duplicate entry CVE-2025-23083.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-24014 segmentation fault in win_line() in Vim < 9.1.1043Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-10846 Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loopInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-11187 Many records in the additional section cause CPU exhaustionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-12705 DNS-over-HTTPS implementation suffers from multiple issues under heavy query loadInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-45339 Vulnerability when creating log files in github.com/golang/glogInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-46981 Redis' Lua library commands may lead to remote code executionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-51741 Redis allows denial-of-service due to malformed ACL selectorsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56763 tracing: Prevent bad count for tracing_cpumask_writeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56766 mtd: rawnand: fix double free in atmel_pmecc_create_user()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56770 net/sched: netem: account for backlog updates from child qdiscInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56786 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57896 btrfs: flush delalloc workers queue before stopping cleaner kthread during unmountInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57911 iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered bufferInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57940 exfat: fix the infinite loop in exfat_readdir()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-49043 xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57900 ila: serialize calls to nf_register_net_hooks()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57892 ocfs2: fix slab-use-after-free due to dangling pointer dqi_privInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-0395 When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56784 drm/amd/display: Adding array index check to prevent memory corruptionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-11218 Podman: buildah: container breakout by using --jobs=2 and a race condition when building a malicious containerfileInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21649 net: hns3: fix kernel crash when 1588 is sent on HIP08 devicesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21634 cgroup/cpuset: remove kernfs active breakInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-0938 URL parser allowed square brackets in domain namesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21631 block, bfq: fix waker_bfqq UAF after bfq_split_bfqq()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21683 bpf: Fix bpf_sk_select_reuseport() memory leakInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23016 FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based buffer overflow) via crafted nameLen or valueLen values in data to the IPC socket. This occurs in ReadParams in fcgiapp.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-13176 Timing side-channel in ECDSA signature computationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-48875 btrfs: don't take dev_replace rwsem on task already holding itInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56767 dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memsetInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56769 media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_regInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57798 drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57801 net/mlx5e: Skip restore TC rules for vport rep without loaded flagInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57887 drm: adv7511: Fix use-after-free in adv7533_attach_dsi()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57926 drm/mediatek: Set private->all_drm_private[i]->drm to NULL if mtk_drm_bind returns errInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-49569 nvme-rdma: unquiesce admin_q before destroy itInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-55553 In FRRouting (FRR) all routes are re-validated if the total size of an update received via RTR exceeds the internal socket's buffer sizeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-56765 powerpc/pseries/vas: Add close() callback in vas_vm_ops structInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-57850 jffs2: Prevent rtime decompress memory corruptionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-54680 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-21672 afs: Fix merge preference rule failure conditionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2020-13630 ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow related to the snippet feature.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-26291 block repositories using http by defaultInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2020-18032 Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" component.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2016-3959 The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted public key to a program that uses HTTPS client certificates or SSH server libraries.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-41772 Go before 1.16.10 and 1.17.x before 1.17.3 allows an archive/zip Reader.Open panic via a crafted ZIP archive containing an invalid name or an empty filename field.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-30629 Session tickets lack random ticket_age_add in crypto/tlsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-30631 Stack exhaustion when reading certain archives in compress/gzipInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2010-4226 cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-10941 Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive information (an RSA private key) by measuring cache usage during an import.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2010-0291 The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial of service (panic) by calling the (1) mmap or (2) mremap function, aka the "do_mremap() mess" or "mremap/mmap mess."Information published.MSRC.MICROSOFT.COM
18 FebCVE-2007-2768 OpenSSH when using OPIE (One-Time Passwords in Everything) for PAM allows remote attackers to determine the existence of certain user accounts which displays a different response if the user account exists and is configured to use one-time passwords (OTP) a similar issue to CVE-2007-2243.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26930 scsi: qla2xxx: Fix double free of the ha->vp_map pointerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-27018 netfilter: br_netfilter: skip conntrack input hook for promisc packetsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-32465 Git's protections for cloning untrusted repositories can be bypassedInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-33601 nscd: netgroup cache may terminate daemon on memory allocation failureInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-34459 An issue was discovered in xmllint (from libxml2) before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35854 mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehashInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-27407 fs/ntfs3: Fixed overflow check in mi_enum_attr()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-4770 When saving a page to PDF, certain font styles could have led to a potential use-after-free crash. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-4775 An iterator stop condition was missing when handling WASM code in the built-in profiler, potentially leading to invalid memory access and undefined behavior. *Note:* This issue only affects the application when the profiler is running. This vulnerability affects Firefox < 126.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36013 Bluetooth: L2CAP: Fix slab-use-after-free in l2cap_connect()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-4773 When a network error occurred during page load, the prior content could have remained in view with a blank URL bar. This could have been used to obfuscate a spoofed web site. This vulnerability affects Firefox < 126.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26948 drm/amd/display: Add a dc_state NULL check in dc_state_releaseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-4778 Memory safety bugs present in Firefox 125. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 126.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-30251 Denial of service when trying to parse malformed POST requests in aiohttpInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35870 smb: client: fix UAF in smb2_reconnect_server()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35843 iommu/vt-d: Use device rbtree in iopf reporting pathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35869 smb: client: guarantee refcounted children from parent sessionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35878 of: module: prevent NULL pointer dereference in vsnprintf()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52656 io_uring: drop any code related to SCM_RIGHTSInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26986 drm/amdkfd: Fix memory leak in create_process failureInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26987 mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabledInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-27050 libbpf: Use OPTS_SET() macro in bpf_xdp_query()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-27053 wifi: wilc1000: fix RCU usage in connect pathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-32020 Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at willInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-32021 Local Git clone may hardlink arbitrary user-readable files into the new repository's "objects/" directoryInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-33600 nscd: Null pointer crashes after notfound responseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35176 REXML contains a denial of service vulnerabilityInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35195 Requests `Session` object does not verify requests after making first request with verify=FalseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35790 usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute groupInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35801 x86/fpu: Keep xfd_state in sync with MSR_IA32_XFDInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35848 eeprom: at24: fix memory corruption race conditionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-35853 mlxsw: spectrum_acl_tcam: Fix memory leak during rehashInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36008 ipv4: check for NULL idev in ip_route_use_hint()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-4323 Fluent Bit Memory Corruption VulnerabilityInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-4603 Excessive time spent checking DSA keys and parametersInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26982 Squashfs: check the inode number is not the invalid value of zeroInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-36910 uio_hv_generic: Don't free decrypted memoryInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52696 powerpc/powernv: Add a null pointer check in opal_powercap_init()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52733 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2019-18222 The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3354 Improper i/o watch removal in tls handshake can lead to remote unauthenticated denial of serviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-35945 Envoy vulnerable to HTTP/2 memory leak in nghttp2 codecInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3750 Libvirt: improper locking in virstoragepoolobjlistsearch may lead to denial of serviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3773 Kernel: xfrm: out-of-bounds read of xfrma_mtimer_thresh nlattrInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-37920 Certifi's removal of e-Tugra root certificateInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3817 Excessive time spent checking DH q parameter valueInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39130 GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function pe_as16() at /gdb/coff-pe-read.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-29406 Insufficient sanitization of Host header in net/httpInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-47085 An issue was discovered in ostree before 2022.7 allows attackers to cause a denial of service or other unspecified impacts via the print_panic function in repo_checkout_filter.rs.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-26136 Versions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3600 During the worker lifecycle, a use-after-free condition could have occured, which could have led to a potentially exploitable crash. This vulnerability affects Firefox < 115.0.2, Firefox ESR < 115.0.2, and Thunderbird < 115.0.1.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3772 Kernel: xfrm: null pointer dereference in xfrm_update_ae_params()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39128 GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a stack overflow via the function ada_decode at /gdb/ada-lang.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39129 GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap use after free via the function add_pe_exported_sym() at /gdb/coff-pe-read.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-28737 There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executablesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-37203 Insufficient validation in the Drag and Drop API in conjunction with social engineering, may have allowed an attacker to trick end-users into creating a shortcut to local system files. This could have been leveraged to execute arbitrary code. This vulnerability affects Firefox < 115.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23144 backlight: led_bl: Hold led_access lock when calling led_sysfs_disable()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23145 mptcp: fix NULL pointer in can_accept_new_subflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23163 net: vlan: don't propagate flags on openInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37755 net: libwx: handle page_pool_dev_alloc_pages errorInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37772 RDMA/cma: Fix workqueue crash in cma_netevent_work_handlerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37773 virtiofs: add filesystem context source name checkInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37781 i2c: cros-ec-tunnel: defer probe if parent EC is not presentInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37787 net: dsa: mv88e6xxx: avoid unregistering devlink regions which were never registeredInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37808 crypto: null - Use spin lock instead of mutexInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37810 usb: dwc3: gadget: check that event count does not exceed event buffer lengthInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37819 irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37830 cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37841 pm: cpupower: bench: Prevent NULL dereference on malloc failureInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37884 bpf: Fix deadlock between rcu_tasks_trace and event_mutex.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37909 net: lan743x: Fix memleak issue when GSO enabledInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37905 firmware: arm_scmi: Balance device refcount when destroying devicesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37915 net_sched: drr: Fix double list add in class with netem as child qdiscInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37936 perf/x86/intel: KVM: Mask PEBS_ENABLE loaded for guest with vCPU's value.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37943 wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifiInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37956 ksmbd: prevent rename with empty stringInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37963 arm64: bpf: Only mitigate cBPF programs loaded by unprivileged usersInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37973 wifi: cfg80211: fix out-of-bounds access during multi-link element defragmentationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37992 net_sched: Flush gso_skb list too during ->change()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37997 netfilter: ipset: fix region locking in hash typesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-4598 Systemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dumpInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37833 net/niu: Niu requires MSIX ENTRY_DATA fields touch before entry readsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-22653 yasm commit 9defefae was discovered to contain a NULL pointer dereference via the yasm_section_bcs_append function at section.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-47268 ping in iputils before 20250602 allows a denial of serviceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-58098 bpf: track changes_pkt_data property for global functionsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23140 misc: pci_endpoint_test: Avoid issue of interrupts remaining after request_irq errorInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23141 KVM: x86: Acquire SRCU in KVM_GET_MP_STATE to protect guest memory accessesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23142 sctp: detect and prevent references to a freed transport in sendmsgInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23157 media: venus: hfi_parser: add check to avoid out of bound accessInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-23158 media: venus: hfi: add check to handle incorrect queue sizeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37739 f2fs: fix to avoid out-of-bounds access in f2fs_truncate_inode_blocks()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37742 jfs: Fix uninit-value access of imap allocated in the diMount() functionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37754 drm/i915/huc: Fix fence not released on early probe errorsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37757 tipc: fix memory leak in tipc_link_xmitInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37758 ata: pata_pxa: Fix potential NULL pointer dereference in pxa_ata_probe()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37769 drm/amd/pm/smu11: Prevent division by zeroInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37776 ksmbd: fix use-after-free in smb_break_all_levII_oplock()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37780 isofs: Prevent the use of too small fidInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37792 Bluetooth: btrtl: Prevent potential NULL dereferenceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37793 ASoC: Intel: avs: Fix null-ptr-deref in avs_component_probe()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37798 codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37800 driver core: fix potential NULL pointer dereference in dev_uevent()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37803 udmabuf: fix a buf size overflow issue during udmabuf creationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37805 sound/virtio: Fix cancel_sync warnings on uninitialized work_structsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37812 usb: cdns3: Fix deadlock when using NCM gadgetInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37817 mcb: fix a double free bug in chameleon_parse_gdd()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37840 mtd: rawnand: brcmnand: fix PM resume warningInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37844 cifs: avoid NULL pointer dereference in dbg callInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37854 drm/amdkfd: Fix mode1 reset crash issueInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37857 scsi: st: Fix array overflow in st_setup()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37867 RDMA/core: Silence oversized kvmalloc() warningInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37874 net: ngbe: fix memory leak in ngbe_probe() error pathInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37878 perf/core: Fix WARN_ON(!ctx) in __free_event() for partial initInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37881 usb: gadget: aspeed: Add NULL pointer check in ast_vhub_init_dev()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37883 s390/sclp: Add check for get_zeroed_page()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37886 pds_core: make wait_context part of q_infoInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37891 ALSA: ump: Fix buffer overflow at UMP SysEx message conversionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37911 bnxt_en: Fix out-of-bound memcpy() during ethtool -wInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37914 net_sched: ets: Fix double list add in class with netem as child qdiscInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37921 vxlan: vnifilter: Fix unlocked deletion of default FDB entryInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37930 drm/nouveau: Fix WARN_ON in nouveau_fence_context_kill()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37933 octeon_ep: Fix host hang issue during device rebootInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37940 ftrace: Add cond_resched() to ftrace_graph_set_hash()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37944 wifi: ath12k: Fix invalid entry fetch in ath12k_dp_mon_srng_processInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37957 KVM: SVM: Forcibly leave SMM mode on SHUTDOWN interceptionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37958 mm/huge_memory: fix dereferencing invalid pmd migration entryInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37967 usb: typec: ucsi: displayport: Fix deadlockInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37972 Input: mtk-pmic-keys - fix possible null pointer dereferenceInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37979 ASoC: qcom: Fix sc7280 lpass potential buffer overflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37982 wifi: wl1251: fix memory leak in wl1251_tx_workInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37988 fix a couple of races in MNT_TREE_BENEATH handling by do_move_mount()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37995 module: ensure that kobject_put() is safe for module type kobjectsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37998 openvswitch: Fix unsafe attribute parsing in output_userspace()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37984 crypto: ecdsa - Harden against integer overflows in DIV_ROUND_UP()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37977 scsi: ufs: exynos: Disable iocc if dma-coherent property isn't setInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37976 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37744 wifi: ath12k: fix memory leak in ath12k_pci_remove()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-37804 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2017-14867 Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x before 2.14.2 uses unsafe Perl scripts to support subcommands such as cvsserver, which allows attackers to execute arbitrary OS commands via shell metacharacters in a module name. The vulnerable code is reachable via git-shell even without CVS support.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-20197 There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar objcopy strip ranlib. When these utilities are run as a privileged user (presumably as part of a script updating binaries across different users) an unprivileged user can trick these utilities into getting ownership of arbitrary files through a symlink.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-20270 An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when performing syntax highlighting of a Standard ML (SML) source file as demonstrated by input that only contains the "exception" keyword.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-20286 A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-27291 In pygments 1.1+ fixed in 2.7.4 the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS. By crafting malicious input an attacker can cause a denial of service.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0901 SEGV and out of bounds memory read from malicious packetInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-1013 Unixodbc: out of bounds stack write due to pointer-to-integer types conversionInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-22017 setuid() does not affect libuv's internal io_uring operations if initialized before the call to setuid().
This allows the process to perform privileged operations despite presumably having dropped such privileges through a call to setuid().
This vulnerability affects all users using version greater or equal than Node.js 18.18.0 Node.js 20.4.0 and Node.js 21.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-2313 If kernel headers need to be extracted bpftrace will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-2466 TLS certificate check bypass with mbedTLSInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-2494 Libvirt: negative g_new0 length can lead to unbounded memory allocationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-28110 Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentialsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-28085 wall in util-linux through 2.40 often installed with setgid tty permissions allows escape sequences to be sent to other users' terminals through argv. (Specifically escape sequences received from stdin are blocked but escape sequences received from argv are not blocked.) There may be plausible scenarios where this leads to account takeover.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-28757 libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-28834 Gnutls: vulnerable to minerva side-channel information leakInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-28849 Proxy-Authorization header kept across hosts in follow-redirectsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6597 An issue was found in the CPython `tempfile.TemporaryDirectory` class affecting versions 3.12.1 3.11.7 3.10.13 3.9.18 and 3.8.18 and prior.
The tempfile.TemporaryDirectory class would dereference symlinks during cleanup of permissions-related errors. This means users which can run privileged programs are potentially able to modify permissions of files referenced by symlinks in some circumstances.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-29180 webpack-dev-middleware Path Traversal vulnerabilityInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-52576 x86/mm, kexec, ima: Use memblock_free_late() from ima_free_kexec_buffer()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26648 drm/amd/display: Fix variable deferencing before NULL check in edp_setup_replay()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-1441 Libvirt: off-by-one error in udevlistinterfacesbystatus()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-1753 Buildah: full container escape at build timeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-2002 Libdwarf: crashes randomly on fuzzed objectInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-23722 In Fluent Bit 2.1.8 through 2.2.1 a NULL pointer dereference can be caused via an invalid HTTP payload with the content type of x-www-form-urlencoded. It crashes and does not restart. This could result in logs not being delivered properly.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-2496 Libvirt: null pointer dereference in udevconnectlistallinterfaces()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-25580 An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17 6.x before 6.2.12 6.3.x through 6.5.x before 6.5.5 and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-27289 pgx SQL Injection via Line Comment CreationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-27304 pgx SQL Injection via Protocol Message Size OverflowInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-27308 Mio's tokens for named pipes may be delivered after deregistrationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-28180 Go JOSE vulnerable to Improper Handling of Highly Compressed Data (Data Amplification)Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-28835 Gnutls: potential crash during chain building/verificationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-29018 External DNS requests from 'internal' networks could lead to data exfiltrationInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-29041 Express.js Open Redirect in malformed URLsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-29195 Azure C SDK Integer Wraparound VulnerabilityInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-50966 erlang-jose (aka JOSE for Erlang and Elixir) through 1.11.6 allow attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value in a JOSE header.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-30204 In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2014-8991 pip 1.3 through 1.5.6 allows local users to cause a denial of service (prevention of package installation) by creating a /tmp/pip-build-* file for another user.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2016-9840 inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmeticInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2016-9841 inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmeticInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-41361 An issue was discovered in FRRouting FRR 9.0. bgpd/bgp_open.c does not check for an overly large length of the rcv software version.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39533 libp2p nodes vulnerable to attack using large RSA keysInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-34038 Etcd v3.5.4 allows remote attackers to cause a denial of service via function PageWriter.write in pagewriter.go. NOTE: the vendor's position is that this is not a vulnerability.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2021-32292 An issue was discovered in json-c from 20200420 (post 0.14 unreleased code) through 0.15-20200726. A stack-buffer-overflow exists in the auxiliary sample program json_parse which is located in the function parseit.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-22217 Buffer overflow vulnerability in c-ares before 1_16_1 thru 1_17_0 via function ares_parse_soa_reply in ares_parse_soa_reply.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2022-47696 An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function compare_symbols.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2020-21528 A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote attackers to cause a denial of service via crafted assembly file.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-28736 Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-28938 Uncontrolled resource consumption in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a priviledged user to potentially enable denial of service via local access.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3180 Heap buffer overflow in virtio_crypto_sym_op_helper()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-3978 Improper rendering of text nodes in golang.org/x/net/htmlInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-29409 Large RSA keys can cause high CPU usage in crypto/tlsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2022-47673 An issue was discovered in Binutils addr2line before 2.39.3, function parse_module contains multiple out of bound reads which may cause a denial of service or other unspecified impacts.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2023-39742 giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-1874 Command injection via array-ish $command parameter of proc_open()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26884 bpf: Fix hashtab overflow check on 32-bit archesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26898 aoe: fix the potential use-after-free problem in aoecmd_cfg_pktsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26901 do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleakInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26907 RDMA/mlx5: Fix fortify source warning while accessing Eth segmentInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-27316 Apache HTTP Server: HTTP/2 DoS by memory exhaustion on endless continuation framesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-2756 __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fixInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-30260 Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch request stream pipelineInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-31583 Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-31744 In Jasper 4.2.2 the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an assertion failure vulnerability allowing attackers to cause a denial of service attack through a specific image file.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-32650 Rustls vulnerable to an infinite loop in rustls::conn::ConnectionCommon::complete_io() with proper client inputInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2023-6237 Excessive time spent checking invalid RSA public keysInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26811 ksmbd: validate payload size in ipc responseInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26928 smb: client: fix potential UAF in cifs_debug_files_proc_show()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-3567 Qemu-kvm: net: assertion failure in update_sctp_checksum()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26836 platform/x86: think-lmi: Fix password opcode ordering for workstationsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-0874 Coredns: cd bit response is cached and served laterInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-22189 QUIC's Connection ID Mechanism vulnerable to Memory Exhaustion AttackInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-2511 Unbounded memory growth with session handling in TLSv1.3Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26881 net: hns3: fix kernel crash when 1588 is received on HIP08 devicesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26882 net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26883 bpf: Fix stackmap overflow check on 32-bit archesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26885 bpf: Fix DEVMAP_HASH overflow check on 32-bit archesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26902 perf: RISCV: Fix panic on pmu overflow handlerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26903 Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_securityInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26909 soc: qcom: pmic_glink_altmode: fix drm bridge use-after-freeInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26913 drm/amd/display: Fix dcn35 8k30 Underflow/Corruption IssueInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-2757 PHP mb_encode_mimeheader runs endlessly for some inputsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-30261 Undici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrectInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-3096 PHP function password_verify can erroneously return true when argument contains NULInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-31580 PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in the component /runtime/vararg_functions.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-31584 Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csrc/jit/mobile/flatbuffer_loader.cpp.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-31755 cJSON v1.7.17 was discovered to contain a segmentation violation which can trigger through the second parameter of function cJSON_SetValuestring at cJSON.c.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-32487 less through 653 allows OS command execution via a newline character in the name of a file because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable but this is set by default in many common cases.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2024-32884 gix-transport indirect code execution via malicious usernameInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-3817 HashiCorp go-getter Vulnerable to Argument Injection When Fetching Remote Default Git BranchesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26814 vfio/fsl-mc: Block calling interrupt handler without triggerInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-27437 vfio/pci: Disable auto-enable of exclusive INTx IRQInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26785 iommufd: Fix protection fault in iommufd_test_syz_conv_iovaInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2024-26789 crypto: arm64/neonbs - fix out-of-bounds access on short inputInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39731 f2fs: vm_unmap_ram() may be called from an invalid contextInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39732 wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39745 rcutorture: Fix rcutorture_one_extend_check() splat in RT kernelsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39788 scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPEInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39750 wifi: ath12k: Correct tid cleanup when tid setup failsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39751 ALSA: hda/ca0132: Fix buffer overflow in add_tuning_controlInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39761 wifi: ath12k: Decrement TID on RX peer frag setup error handlingInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39742 RDMA: hfi1: fix possible divide-by-zero in find_hw_thread_mask()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39743 jfs: truncate good inode pages when hard link is 0Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39790 bus: mhi: host: Detect events pointing to unexpected TREsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38703 drm/xe: Make dma-fences compliant with the safe access rulesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38692 exfat: add cluster chain loop check for dirInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38713 hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-38735 gve: prevent ethtool ops after shutdownInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39711 media: ivsc: Fix crash at shutdown due to missing mei_cldev_disable() callsInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39721 crypto: qat - flush misc workqueue during device shutdownInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-39713 media: rainshadow-cec: fix TOCTOU race condition in rain_interrupt()Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-57052 cJSON 1.5.0 through 1.7.18 allows out-of-bounds access via the decode_array_index_from_pointer function in cJSON_Utils.c, allowing remote attackers to bypass array bounds checking and access restricted data via malformed JSON pointer strings containing alphanumeric characters.Information published.MSRC.MICROSOFT.COM
18 FebCVE-2025-9566 Podman: podman kube play command may overwrite host filesInformation published.MSRC.MICROSOFT.COM
18 FebCVE-2025-58754 Axios is vulnerable to DoS attack through lack of data size checkInformation published.MSRC.MICROSOFT.COM
18 FebZDI-26-107: Autodesk AutoCAD MODEL File Out-Of-Bounds Write Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rati…ZERODAYINITIATIVE.COM
18 FebZDI-26-106: Autodesk AutoCAD CATPART File Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rati…ZERODAYINITIATIVE.COM
⚠️ VULNERABILITY DISCLOSURE 3[−]
18 FebA Vulnerability in Dell RecoverPoint for Virtual Machines Could Allow for Arbitrary Code ExecutionA vulnerability has been discovered in Dell RecoverPoint for Virtual Machines which could allow for arbitrary code execution. Dell RecoverPoint for Virtual Machines is an enterprise-grade solution for VMware Virtual Machines (VMs) enabling local, remote, and concurrent local and …CISECURITY.ORG
18 FebA Vulnerability in Google Chrome Could Allow for Arbitrary Code ExecutionA vulnerability has been discovered in Google Chrome which could allow for arbitrary code execution. Successful exploitation of the vulnerability could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user an…CISECURITY.ORG
18 FebNews alert: CredShields research informs OWASP’s 2026 ‘Smart Contract Security Priorities Project’SINGAPORE, Feb. 17th, 2026, CyberNewswire — The OWASP Smart Contract Security Project has released the OWASP Smart Contract Top 10 2026, a risk prioritization framework developed from structured analysis of real world exploit data observed across blockchain ecosystems in 2025.…LASTWATCHDOG.COM
📢 SECURITY ADVISORIES 2[−]
18 FebCarelessness versus craftsmanship in cryptographyTwo popular AES libraries, aes-js and pyaes, “helpfully” provide a default IV in their AES-CTR API, leading to a large number of key/IV reuse bugs. These bugs potentially affect thousands of downstream projects. When we shared one of these bugs with an affected vendor, strongSwan…TRAILOFBITS.COM
18 FebRisky Business #825 -- Palo Alto Networks blames it on the boogieOn this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They cover: Palo Alto threat researchers want to attribute to China, but management says shush An increasing proportion of ransomware is data extortion. Is this good? Cambodia …RISKY.BIZ
🔥 INCIDENT REPORTING 3[−]
18 FebOpenClaw: Info Stealers Take Your SoulInfo Stealers Target OpenClaw, a Robot Vacuum API Flaw Exposes Thousands, Best Buy Fraud Shows Zero Trust Context, and Canada Goose Data Leaked via Supplier The episode covers multiple security incidents and lessons. Hudson Rock details how an info stealer malware infection can v…CYBERSECURITYTODAY.LIBSYN.COM
18 FebFigure - 967,178 breached accountsIn February 2026, data obtained from the fintech lending platform Figure was publicly posted online . The exposed data, dating back to January 2026, contained over 900k unique email addresses along with names, phone numbers, physical addresses and dates of birth. Figure confirmed…HAVEIBEENPWNED.COM
18 FebGrayCharlie Hijacks Law Firm Sites in Suspected Supply-Chain AttackGrayCharlie turns compromised WordPress sites into malware delivery machines. Discover how this threat actor chains fake browser updates and ClickFix lures to deploy NetSupport RAT, Stealc, and SectopRAT.RECORDEDFUTURE.COM
🕵️ THREAT INTELLIGENCE 1[−]
18 FebWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 6 points | 8 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
📡 INFOSEC NEWS 2[−]
18 FebCitizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police CustodyNew research from the Citizen Lab has found signs that Kenyan authorities used a commercial forensic extraction tool manufactured by Israeli company Cellebrite to break into a prominent dissident's phone, making it the latest case of abuse of the technology targeting civil societ…THEHACKERNEWS.COM
18 FebDutch police arrest man for “hacking” after accidentally sending him confidential filesPolice in The Netherlands say they have arrested a 40-year-old man on suspicion of hacking... after police officers accidentally sent him a link granting him access to their own confidential documents Read more in my article on the Hot for Security blog.BITDEFENDER.COM