kernel vulnerability

Microsoft has publicly recorded CVE‑2025‑62221 — a use‑after‑free (UAF) defect in the Windows Cloud Files Mini Filter Driver (cldflt.sys) — that can be triggered by a local, authorized user to escalate privileges to SYSTEM, and administrators should treat this as a high‑priority local escalation...

Microsoft has assigned CVE‑2025‑59517 to a newly disclosed elevation‑of‑privilege flaw in the Windows Storage VSP driver — the kernel‑mode component Hyper‑V uses to provide storage services to guest partitions. The bug is described as improper access control that allows an authorized local...

Microsoft has recorded a new kernel‑level vulnerability, CVE‑2025‑59516, in the Windows Storage Virtualization Service Provider (VSP) driver that can allow a local, authorized attacker to escalate privileges on affected hosts by invoking a missing authentication path in the driver—Microsoft’s...

Microsoft’s security advisory for CVE-2025-62573 identifies a use‑after‑free bug in the DirectX Graphics Kernel that can be abused by an authenticated local user to escalate privileges to SYSTEM, and administrators should treat the issue as a high‑impact kernel elevation‑of‑privilege (EoP) risk...

Microsoft’s public vulnerability record for CVE-2025-62470 confirms a new high‑impact elevation‑of‑privilege flaw in the Windows Common Log File System (CLFS) driver that, according to vendor metadata and multiple independent trackers, is a heap‑based buffer‑overflow allowing a local, authorized...

Microsoft’s short public advisory that “Azure Linux includes this open‑source library and is therefore potentially affected” is correct as a product‑level statement — but it is not a categorical guarantee that no other Microsoft product can include the same vulnerable Linux kernel code...

The Linux kernel received a targeted, low‑risk patch that closes a null‑pointer dereference in the SCTP receive/state‑machine code — tracked as CVE‑2025‑40187 — a defect that could trigger kernel oopses or host reboots when specially sequenced AUTH/INIT state transitions leave an internal event...

A subtle mistake in the SLUB allocator’s handling of kmalloc redzones has been tracked as CVE-2024-49885: a kernel-level bug that can turn defensive memory-initialization into a self-inflicted availability failure. The defect is narrow and surgical in scope — it only appears when SLUB debugging...

Microsoft’s short, product‑scoped attestation — that “Azure Linux includes this open‑source library and is therefore potentially affected” — is accurate and actionable for Azure Linux customers, but it is not a categorical proof that no other Microsoft product can or does include the same...

A subtle driver-state bug in Broadcom’s bnxt Ethernet driver has been assigned CVE-2025-21682 after maintainers fixed a race and a NULL-pointer dereference that can lead to kernel crashes when XDP programs are detached and subsequent reconfiguration occurs. Systems that attach and remove XDP...

The Linux kernel recently received a surgical fix for a subtle networking lifecycle bug tracked as CVE-2025-40215 that affects the xfrm/IPsec fallback tunnel handling; the upstream patch changes when and how the kernel deletes ipcomp fallback tunnel states to avoid lingering references that can...

A kernel-level bug in the Linux XDP socket (XSK) transmit path — tracked as CVE-2023-53240 — allows a local, low-privileged actor to trigger a NULL-pointer dereference and crash the kernel; the fix is a targeted rework of the XSK transmit flow that moves an IFF_UP check earlier and consolidates...

Microsoft has pushed a high-priority November cumulative update for Windows that closes dozens of security holes — including a Windows kernel flaw Microsoft says was being actively exploited in the wild — and users and administrators are being urged to install the patch without delay. Background...

Microsoft has released KB5068781 — the first cumulative security rollup for Windows 10 distributed through the Extended Security Updates (ESU) program — advancing 22H2 systems to Build 19045.6575 and delivering a targeted set of security and servicing fixes for ESU‑enrolled devices. This update...

Microsoft has shipped the November 2025 security rollup and an urgent out‑of‑band (OOB) patch that fixes a bug which prevented some Windows 10 PCs from enrolling in the consumer Extended Security Updates (ESU) program — a release that also closes an actively exploited Windows kernel zero‑day and...

Microsoft released a security update addressing CVE-2025-62215 — a Windows kernel race-condition that can allow a local, authenticated attacker to escalate privileges to SYSTEM — and administrators must treat this as a high-priority local escalation risk, verify patch deployment across affected...

A newly recorded kernel vulnerability tied to the Windows Transport Driver Interface (TDI) translation component — tracked as CVE‑2025‑60720 — has been classified as a high‑severity local elevation‑of‑privilege issue affecting multiple Windows client and server SKUs; vendors and independent...

Microsoft’s Security Update Guide now lists CVE‑2025‑60709 as an Elevation of Privilege vulnerability in the Windows Common Log File System (CLFS) driver, but public technical detail is sparse and the vendor advisory currently provides only a concise listing rather than a full technical...

The Linux kernel received a small but important defensive patch that fixes a NULL-pointer dereference in the PCI endpoint test driver (pci-epf-test) — tracked as CVE-2025-40032 — by adding explicit checks for DMA channel pointers before they are released, closing a path that could cause kernel...

Microsoft has added CVE-2025-59192 to its October security rollup: a buffer over‑read in the Storport.sys Windows storage driver that Microsoft says can be abused by a locally authorized attacker to gain elevated privileges, and administrators should treat the published update as an urgent...