7.0
CVE-2025-40237 - fs/notify: call exportfs_encode_fid with s_umount
In the Linux kernel, the following vulnerability has been resolved: fs/notify: call exportfs_encode_fid with s_umount Calling intotify_show_fdinfo() on fd watching an overlayfs inode, while the overlayfs is being unmounted, can lead to dereferencing NULL ptr. This issue was found by syzkaller. β¦
5.5
CVE-2025-40227 - mm/damon/sysfs: dealloc commit test ctx always
In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: dealloc commit test ctx always The damon_ctx for testing online DAMON parameters commit inputs is deallocated only when the test fails. This means memory is leaked for every successful online DAMON parameters comβ¦
9.8
CVE-2025-29269 -
ALLNET ALL-RUT22GW v3.3.8 was discovered to contain an OS command injection vulnerability via the command parameter in the popen.cgi endpoint.
5.5
CVE-2025-14010 - Ansible-collection-community-general: ansible-collection-community-general: keycloak user module leβ¦
A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure (IE) of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and poteβ¦
7.5
CVE-2025-56427 -
Directory Traversal vulnerability in ComposioHQ v.0.7.20 allows a remote attacker to obtain sensitive information via the _download_file_or_dir function.
7.1
CVE-2025-40256 - xfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added
In the Linux kernel, the following vulnerability has been resolved: xfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added In commit b441cf3f8c4b ("xfrm: delete x->tunnel as we delete x"), I missed the case where state creation fails between full initialization β¦
7.0
CVE-2025-40238 - net/mlx5: Fix IPsec cleanup over MPV device
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix IPsec cleanup over MPV device When we do mlx5e_detach_netdev() we eventually disable blocking events notifier, among those events are IPsec MPV events from IB to core. So before disabling those blocking events, makβ¦
5.5
CVE-2025-40222 - tty: serial: sh-sci: fix RSCI FIFO overrun handling
In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrun_reg is specified as a memory offset, while for other SCIF types it is β¦
7.0
CVE-2025-40220 - fuse: fix livelock in synchronous file put from fuseblk workers
In the Linux kernel, the following vulnerability has been resolved: fuse: fix livelock in synchronous file put from fuseblk workers I observed a hang when running generic/323 against a fuseblk server. This test opens a file, initiates a lot of AIO writes to that file descriptor, and closes the fiβ¦
8.6
CVE-2025-62173 - Authenticated SQL Injection in Endpoint Module Rest API
## Summary Authenticated SQL Injection Vulnerability in Endpoint Module Rest API