MATLOCK.CA
50Articles
7Categories
2026-02-28Date
πŸ›
CVE-2025-40082 hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2023-54207 HID: uclogic: Correct devm device reference for hidinput input_dev name
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-68340 team: Move team device type change at the end of team_port_add
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71147 KEYS: trusted: Fix a memory leak in tpm2_load_cmd
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71152 net: dsa: properly keep track of conduit reference
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71154 net: usb: rtl8150: fix memory leak on usb_submit_urb() failure
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71160 netfilter: nf_tables: avoid chain re-validation if possible
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71161 dm-verity: disable recursive forward error correction
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71163 dmaengine: idxd: fix device leaks on compat bind and unbind
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22976 net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22977 net: sock: fix hardened usercopy panic in sock_recv_errqueue
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22978 wifi: avoid kernel-infoleak from struct iw_point
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22992 libceph: return the handler error from mon_handle_auth_done()
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22996 net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22997 net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22998 nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71150 ksmbd: Fix refcount leak when invalid session is found on session lookup
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71162 dmaengine: tegra-adma: Fix use-after-free
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22979 net: fix memory leak in skb_segment_list for GRO packets
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22980 nfsd: provide locking for v4_end_grace
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22982 net: mscc: ocelot: Fix crash when adding interface under a lag
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22984 libceph: prevent potential out-of-bounds reads in handle_auth_done()
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22990 libceph: replace overzealous BUG_ON in osdmap_apply_incremental()
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22991 libceph: make free_choose_arg_map() resilient to partial allocation
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-22999 net/sched: sch_qfq: do not free existing class in qfq_change_class()
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-23212 bonding: annotate data-races around slave->last_rx
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-23220 ksmbd: fix infinite loop caused by next_smb2_rcv_hdr_off reset in error paths
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71232 scsi: qla2xxx: Free sp in error path to fix system crash
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-28364 In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c) enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock() function, which performs unbounded memcpy() operations using attacker-controlled lengths from crafted Marshal data.
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-23216 scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-23222 crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2026-23228 smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection()
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71235 scsi: qla2xxx: Delay module unload while fabric scan in progress
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71229 wifi: rtw88: Fix alignment fault in rtw_core_enable_beacon()
MSRC.MICROSOFT.COM — 28 Feb 2026
πŸ›
CVE-2025-71237 nilfs2: Fix potential block overflow that cause system hang
MSRC.MICROSOFT.COM — 28 Feb 2026
⚠️
Cybersecurity Today Weekend with Carey Frey, VP and Chief Security Officer at TELUS
CYBERSECURITYTODAY.LIBSYN.COM — 28 Feb 2026
⚠️
Hackers Exploit Windows File Explorer and WebDAV to Distribute Malware
GBHACKERS.COM — 28 Feb 2026
⚠️
Who is the Kimwolf Botmaster β€œDort”?
KREBSONSECURITY.COM — 28 Feb 2026
⚠️
ClawJacked Flaw Lets Malicious Sites Hijack Local OpenClaw AI Agents via WebSocket
THEHACKERNEWS.COM — 28 Feb 2026
πŸ“’
Compliant or Facing Federal Fines
YOUTUBE.COM — 2026-02-28
πŸ“’
This month in security with Tony Anscombe – February 2026 edition
WELIVESECURITY.COM — 28 Feb 2026
πŸ”₯
Canadian Tire Data Breach Impacts 38 Million Accounts
SECURITYWEEK.COM — 28 Feb 2026
πŸ”₯
QuickLens Chrome extension steals crypto, shows ClickFix attack
BLEEPINGCOMPUTER.COM — 28 Feb 2026
πŸ•΅οΈ
Trump Bans Anthropic AI in Federal Agencies Amid Growing Security Concerns
GBHACKERS.COM — 28 Feb 2026
πŸ•΅οΈ
Fake Zoom and Google Meet Phishing Campaigns Deploy Teramind Surveillance Software
GBHACKERS.COM — 28 Feb 2026
πŸ•΅οΈ
MY TAKE: The Pentagon punished Anthropic for red lines it accepted from OpenAI hours later
LASTWATCHDOG.COM — 28 Feb 2026
🌐
Pentagon Designates Anthropic Supply Chain Risk Over AI Military Dispute
THEHACKERNEWS.COM — 28 Feb 2026
πŸ“‘
India disrupts access to popular developer platform Supabase with blocking order
TECHCRUNCH.COM — 28 Feb 2026
πŸ“‘
Thousands of Public Google Cloud API Keys Exposed with Gemini Access After API Enablement
THEHACKERNEWS.COM — 28 Feb 2026
πŸ“‘
$4.8M in crypto stolen after Korean tax agency exposes wallet seed
BLEEPINGCOMPUTER.COM — 28 Feb 2026