memory safety

The Linux kernel received a targeted fix in November 2025 for a subtle but potentially dangerous memory-handling bug in its TLS decryption path: when asynchronous TLS decryption attempts fail to create a safe clone of incoming packet memory (via tls_strp_msg_hold), the kernel must wait for...

A small but consequential flaw in the Linux AMD DRM display stack — tracked as CVE‑2024‑49971 — can cause an out‑of‑bounds write when the driver reads the third element of a two‑element array; the upstream remedy is a simple, surgical change to increase the dummy_boolean array size from 2 to 3...

The Linux kernel received a targeted fix for an out‑of‑bounds memory access in the SJA1105 driver that surfaced as a KASAN warning in sja1105_table_delete_entry, tracked as CVE‑2025‑22107; upstream maintainers corrected the logic that drove an unsafe memmove so the driver no longer touches...

A recently disclosed Linux-kernel vulnerability, tracked as CVE-2025-37750, fixes a kernel use‑after‑free (UAF) that can be triggered when SMB multichannel is used with encrypted transfers; the bug arises from reusing crypto AEAD state across channels and manifests as KASAN-detected slab UAFs...

A locally exploitable memory‑corruption bug in LibTIFF’s tiffcrop utility — tracked as CVE‑2025‑8961 — has been publicly documented and patched upstream, and the technical trail points to a double‑free and missing cleanup checks in tools/tiffcrop.c that can crash or corrupt memory when...

A newly disclosed vulnerability in the widely used file-synchronization utility rsync — tracked as CVE-2025-10158 — allows a malicious rsync receiver to induce an out-of-bounds read of a heap buffer by exploiting a negative array index; the issue was fixed upstream in a small commit but remains...

A silent boundary-check mistake in a widely used networking library has resurfaced a familiar security lesson: small parsing errors in C can still bite large ecosystems. In September 2025 the curl project disclosed CVE-2025-9086, an out-of-bounds read in cookie path handling inside libcurl that...

A new Linux kernel security entry, tracked as CVE‑2025‑40266, fixes a correctness validation in KVM’s ARM64 FF‑A memory‑sharing path that could allow an out‑of‑bounds access in the hypervisor when a deliberately large offset is supplied; the upstream remedy is a narrow bounds check added to...

A newly recorded weakness in Python’s standard HTTP client lets a malicious server force a client process to allocate huge amounts of memory by abusing the Content-Length handling, creating a remote Denial‑of‑Service (DoS) and out‑of‑memory (OOM) risk for applications that use the library...

A heap buffer over-read has been disclosed in the libpng library’s simplified write API: CVE-2025-64506 affects libpng versions 1.6.0 through 1.6.50 and is patched in libpng 1.6.51; the flaw stems from an incorrect conditional in png_write_image_8bit that can cause 8-bit image buffers to be...

Ashlar‑Vellum’s Cobalt family and related products were disclosed as containing multiple high‑impact memory‑safety vulnerabilities that can lead to information disclosure and arbitrary code execution; operators must treat these defects as urgent and update to vendor‑supplied builds or apply...

Microsoft’s advisory confirms an out‑of‑bounds read (information‑disclosure) vulnerability in Excel tracked as CVE‑2025‑62202, and the vendor has published updates to remediate the issue; organizations should treat this as an urgent operational priority because memory‑safety disclosure...

The Linux kernel received a targeted fix for an out‑of‑bounds read in the UDF filesystem parser — a small defensive change that closes a KASAN‑reported use‑after‑free triggered by malformed Allocation Extent Descriptors and prevents crc_itu_t from being invoked on memory outside the descriptor...

Microsoft has assigned CVE-2025-58736 to a class of vulnerabilities in Inbox COM Objects (Global Memory) that were patched in the October 2025 security updates; the issue is part of a broader family of COM/COM+ defects (race conditions, use‑after‑free and related memory‑safety faults) that can...

The LibTIFF codebase contains a long‑standing, practical memory‑safety defect tracked as CVE‑2016‑9535 — a heap buffer overflow in the predictor/tile handling code — that was introduced in the 4.0.6 release and patched in subsequent versions. This vulnerability arises in tif_predict.c /...

Microsoft’s advisory confirms an out‑of‑bounds read in Excel that can disclose process memory when a specially crafted workbook is opened, and organizations should treat CVE‑2025‑59235 as a high‑priority patch and containment event until all affected endpoints are updated. Background Microsoft...

Google released an emergency Chrome stable update that fixes a use‑after‑free (UAF) vulnerability in the WebRTC component tracked as CVE‑2025‑10501, and Microsoft Edge (Chromium‑based) customers should treat the issue as relevant until Microsoft ships the Chromium ingestion for Edge. Background...

Firefox’s latest release delivers the kind of practical Windows-focused refinements power users have been asking for — and a high-profile AI tie‑in that will keep privacy wonks and enterprise admins debating for weeks. Background / Overview Mozilla’s rapid-release cadence means the browser you...

Rust’s orange crab may be cute, but the language it represents is reshaping engineering decisions at the deepest levels of modern software: from browsers and kernels to cloud services and consumer devices. At RustConf 2025 the community celebrated a decade since Rust’s 1.0 release while also...

The recent churn in the Linux world—Rust maintainer resignations, high-profile upstream disputes and filesystem governance fights—has breathed new life into a different conversation: developers who feel alienated by the Linux kernel’s culture and process do not necessarily have to fork Linux...