security patch

Microsoft shipped a November patch that it said fixed a privilege‑escalation defect in Windows 11’s new Administrator Protection feature — but independent researchers say the remedy was incomplete, and public records show the exchange between Google’s Project Zero and Microsoft has not produced...

A small, easily overlooked piece of memory-management logic in the HDF5 C library has been rewarded with a CVE and a fast upstream fix: CVE-2025-2925 identifies a double‑free in the HDF5 function H5MM_realloc (src/H5MM.c) that can be triggered when a caller passes an effective size of zero. The...

A heap‑based buffer overflow has been disclosed in the HDF5 library: CVE‑2025‑2923 documents a flaw in the function H5F_addr_encode_len (file src/H5Fint.c) that can write past an allocated buffer when processing crafted data, producing a reliable crash and a low‑to‑medium severity local attack...

The X.Org Big Requests extension contains a subtle integer‑overflow bug that can be triggered by specially crafted request lengths, allowing an attacker with the right access to bypass the size check, cause out‑of‑‑bounds memory access and crashes, and in some configurations produce memory...

Microsoft released the December 2025 cumulative for Windows 10 ESU today as KB5071546, advancing eligible systems to Build 19045.6691 / 19044.6691 and packaging the November fixes plus a security-focused tweak to PowerShell 5.1. The update is available through Windows Update for devices that are...

Microsoft has cataloged a new elevation‑of‑privilege issue affecting Microsoft Exchange Server as CVE‑2025‑64666, a vulnerability vendors and trackers list as an Exchange Server elevation of privilege that requires immediate attention from administrators who run on‑premises or hybrid Exchange...

A small but important Linux kernel hardening landed this month: the framebuffer console (fbcon) subsystem was patched to clear stale pointers by setting fb_display*->mode to NULL when a framebuffer mode is released, closing a use‑after‑free discovered by syzkaller that could otherwise allow a...

A small but important Linux-kernel robustness fix has been recorded as CVE-2025-40315: a race condition in the USB Gadget full-speed (f_fs) function driver that could cause a kernel NULL-pointer dereference after an endpoint is enabled; operators should treat this as an availability risk, verify...

A recently assigned vulnerability identifier, CVE-2025-40319, describes a race condition in the Linux kernel’s BPF ring buffer implementation that can let a deferred interrupt-work handler access freed memory; the fix adds a synchronization call to ensure pending IRQ work completes before the...

A small, surgical change to the Linux virtio networking code has closed a correctness hole that could let a hostile or malformed host announcement trigger a NULL page pointer dereference when guests receive very large packets; the fix — now tracked as CVE-2025-40292 — tightens the...

A new Linux-kernel vulnerability, tracked as CVE‑2025‑40314, has been published: a use‑after‑free in the cdns3 USB gadget driver that can occur when the cdnsp gadget fails to initialize or during gadget exit, and upstream kernel maintainers have merged a compact fix into recent stable trees to...

The Linux kernel now tracks CVE-2025-40289 — a deterministic crash in the AMDGPU DRM driver where VRAM sysfs attributes remain visible on GPUs that have no dedicated VRAM (APUs/integrated GPUs), and reading those attributes can cause a kernel crash; upstream stable commits have been merged to...

A new Linux kernel vulnerability tracked as CVE-2025-40287 has been disclosed and fixed: an exFAT driver bug where the code failed to validate a dentry's stream size properly, allowing a crafted filesystem entry to trigger an infinite loop and hang the kernel. The flaw arises because the exFAT...

The Apache HTTP Server project has published a security fix for CVE-2025-65082, a CGI environment variable override that affects Apache httpd 2.4.0 through 2.4.65 and is resolved in Apache httpd 2.4.66; administrators running CGI or mod_cgi/mod_cgid setups should prioritize upgrading and...

KubeVirt contains a logic flaw in its hostDisk handling that can allow a VM to cause the node to read or be forced to write arbitrary host files — a high-severity host-file access bug tracked as CVE-2025-64324 and patched in the 1.6.1 and 1.7.0 releases. Background / Overview KubeVirt is an...

The Linux kernel received a targeted, low‑risk patch that closes a null‑pointer dereference in the SCTP receive/state‑machine code — tracked as CVE‑2025‑40187 — a defect that could trigger kernel oopses or host reboots when specially sequenced AUTH/INIT state transitions leave an internal event...

A small, surgical kernel fix landed in November that closes a subtle but real crash risk in the Linux mount subsystem: CVE‑2025‑40195 addresses a NULL‑pointer handling error where mnt_ns_release can be invoked with a NULL argument from the listmount cleanup path. The change is small — a...

A critical bug in the Linux kernel's media subsystem — tracked as CVE-2025-40207 — has been fixed after researchers discovered that the v4l2-subdev helper macro v4l2_subdev_call_state_try failed to handle allocation errors correctly, creating a crash path when the kernel attempted to use an...

A recently disclosed Linux kernel vulnerability, tracked as CVE-2025-40158, affects the IPv6 transmit path: a race-condition/RCU misuse in the ip6_output / ip6_finish_output2 code that can lead to a possible use‑after‑free (UAF) when the kernel reads the destination device pointer; the upstream...

The Linux kernel received a targeted fix in November 2025 for a subtle but potentially dangerous memory-handling bug in its TLS decryption path: when asynchronous TLS decryption attempts fail to create a safe clone of incoming packet memory (via tls_strp_msg_hold), the kernel must wait for...