security patch

The X.Org Big Requests extension contains a subtle integer‑overflow bug that can be triggered by specially crafted request lengths, allowing an attacker with the right access to bypass the size check, cause out‑of‑‑bounds memory access and crashes, and in some configurations produce memory...

Microsoft released the December 2025 cumulative for Windows 10 ESU today as KB5071546, advancing eligible systems to Build 19045.6691 / 19044.6691 and packaging the November fixes plus a security-focused tweak to PowerShell 5.1. The update is available through Windows Update for devices that are...

Microsoft has cataloged a new elevation‑of‑privilege issue affecting Microsoft Exchange Server as CVE‑2025‑64666, a vulnerability vendors and trackers list as an Exchange Server elevation of privilege that requires immediate attention from administrators who run on‑premises or hybrid Exchange...

A small but important Linux kernel hardening landed this month: the framebuffer console (fbcon) subsystem was patched to clear stale pointers by setting fb_display*->mode to NULL when a framebuffer mode is released, closing a use‑after‑free discovered by syzkaller that could otherwise allow a...

A small but important Linux-kernel robustness fix has been recorded as CVE-2025-40315: a race condition in the USB Gadget full-speed (f_fs) function driver that could cause a kernel NULL-pointer dereference after an endpoint is enabled; operators should treat this as an availability risk, verify...

A recently assigned vulnerability identifier, CVE-2025-40319, describes a race condition in the Linux kernel’s BPF ring buffer implementation that can let a deferred interrupt-work handler access freed memory; the fix adds a synchronization call to ensure pending IRQ work completes before the...

A small, surgical change to the Linux virtio networking code has closed a correctness hole that could let a hostile or malformed host announcement trigger a NULL page pointer dereference when guests receive very large packets; the fix — now tracked as CVE-2025-40292 — tightens the...

A new Linux-kernel vulnerability, tracked as CVE‑2025‑40314, has been published: a use‑after‑free in the cdns3 USB gadget driver that can occur when the cdnsp gadget fails to initialize or during gadget exit, and upstream kernel maintainers have merged a compact fix into recent stable trees to...

The Linux kernel now tracks CVE-2025-40289 — a deterministic crash in the AMDGPU DRM driver where VRAM sysfs attributes remain visible on GPUs that have no dedicated VRAM (APUs/integrated GPUs), and reading those attributes can cause a kernel crash; upstream stable commits have been merged to...

A new Linux kernel vulnerability tracked as CVE-2025-40287 has been disclosed and fixed: an exFAT driver bug where the code failed to validate a dentry's stream size properly, allowing a crafted filesystem entry to trigger an infinite loop and hang the kernel. The flaw arises because the exFAT...

The Apache HTTP Server project has published a security fix for CVE-2025-65082, a CGI environment variable override that affects Apache httpd 2.4.0 through 2.4.65 and is resolved in Apache httpd 2.4.66; administrators running CGI or mod_cgi/mod_cgid setups should prioritize upgrading and...

KubeVirt contains a logic flaw in its hostDisk handling that can allow a VM to cause the node to read or be forced to write arbitrary host files — a high-severity host-file access bug tracked as CVE-2025-64324 and patched in the 1.6.1 and 1.7.0 releases. Background / Overview KubeVirt is an...

The Linux kernel received a targeted, low‑risk patch that closes a null‑pointer dereference in the SCTP receive/state‑machine code — tracked as CVE‑2025‑40187 — a defect that could trigger kernel oopses or host reboots when specially sequenced AUTH/INIT state transitions leave an internal event...

A small, surgical kernel fix landed in November that closes a subtle but real crash risk in the Linux mount subsystem: CVE‑2025‑40195 addresses a NULL‑pointer handling error where mnt_ns_release can be invoked with a NULL argument from the listmount cleanup path. The change is small — a...

A critical bug in the Linux kernel's media subsystem — tracked as CVE-2025-40207 — has been fixed after researchers discovered that the v4l2-subdev helper macro v4l2_subdev_call_state_try failed to handle allocation errors correctly, creating a crash path when the kernel attempted to use an...

A recently disclosed Linux kernel vulnerability, tracked as CVE-2025-40158, affects the IPv6 transmit path: a race-condition/RCU misuse in the ip6_output / ip6_finish_output2 code that can lead to a possible use‑after‑free (UAF) when the kernel reads the destination device pointer; the upstream...

The Linux kernel received a targeted fix in November 2025 for a subtle but potentially dangerous memory-handling bug in its TLS decryption path: when asynchronous TLS decryption attempts fail to create a safe clone of incoming packet memory (via tls_strp_msg_hold), the kernel must wait for...

A subtle change in the Linux kernel networking stack — switching get_netdev_for_sock to use __sk_dst_get and dst_dev_rcu — was published as CVE-2025-40149 and patches were merged upstream to remove a potential use‑after‑free (UAF) when callers accessed a transient device pointer outside an RCU...

The Linux kernel disclosure tracked as CVE-2024-49945 fixes a subtle but meaningful resource-management bug in the Network Controller Sideband Interface (NCSI) driver: the kernel was freeing an NCSI device structure while a scheduled work item could still run against it, creating a classic...

The Linux kernel vulnerability CVE-2024-1151 is a stack‑overflow defect in the Open vSwitch (OVS) kernel module that can be triggered by recursive action operations and yields a reliable denial‑of‑service (DoS) — an attacker who can reach the OVS control path can cause the kernel to crash or the...