7.0

CVSS3.1

CVE-2025-40122 - perf/x86/intel: Fix IA32_PMC_x_CFG_B MSRs access error

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Fix IA32_PMC_x_CFG_B MSRs access error When running perf_fuzzer on PTL, sometimes the below "unchecked MSR access error" is seen when accessing IA32_PMC_x_CFG_B MSRs. [ 55.611268] unchecked MSR access error: Wโ€ฆ

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

3.3

CVSS3.1

CVE-2025-63396 - pytorch: PyTorch denial of service

An issue was discovered in PyTorch v2.5 and v2.7.1. Omission of profiler.stop() can cause torch.profiler.profile (PythonTracer) to crash or hang during finalization, leading to a Denial of Service (DoS).

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: Jan. 2, 2026, 8:54 p.m.

7.0

CVSS3.1

CVE-2025-40155 - iommu/vt-d: debugfs: Fix legacy mode page table dump logic

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault, prโ€ฆ

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.8

CVSS3.1

CVE-2025-64280 -

A SQL Injection Vulnerability in CentralSquare Community Development 19.5.7 allows attackers to inject SQL via the permit_no field.

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 31, 2025, 4:44 p.m.

6.1

CVSS3.1

CVE-2025-59491 -

Cross Site Scripting vulnerability in CentralSquare Community Development 19.5.7 via form fields.

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 31, 2025, 4:38 p.m.

7.0

CVSS3.1

CVE-2025-40195 - mount: handle NULL values in mnt_ns_release()

In the Linux kernel, the following vulnerability has been resolved: mount: handle NULL values in mnt_ns_release() When calling in listmount() mnt_ns_release() may be passed a NULL pointer. Handle that case gracefully.

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2025-40149 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock().

In the Linux kernel, the following vulnerability has been resolved: tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock(). get_netdev_for_sock() is called during setsockopt(), so not under RCU. Using sk_dst_get(sk)->dev could trigger UAF. Let's use __sk_dst_get() and dst_dev_rcu().โ€ฆ

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: Feb. 26, 2026, 3:51 p.m.

7.0

CVSS3.1

CVE-2025-40135 - ipv6: use RCU in ip6_xmit()

In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU in ip6_xmit() Use RCU in ip6_xmit() in order to use dst_dev_rcu() to prevent possible UAF.

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.0

CVSS3.1

CVE-2025-40154 - ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcr_rt5640 driver only shows an error message but leaves as is. This may lead to unepxected results like OOBโ€ฆ

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.5

CVSS3.1

CVE-2025-40126 - sparc: fix accurate exception reporting in copy_{from_to}_user for UltraSPARC

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copy_{from_to}_user for UltraSPARC The referenced commit introduced exception handlers on user-space memory references in copy_from_user and copy_to_user. These handlers return from the โ€ฆ

๐Ÿ“… Published: Nov. 12, 2025, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 3044 of 34,919
ยซ previous page ยป next page
Filters