vulnerability

A new kernel fix quietly landed this week that closes a subtle NTFS metadata handling issue in the in‑kernel ntfs3 driver: CVE‑2025‑40313, described as “ntfs3: pretend $Extend records as regular files.” The change is small in code but important in principle — it corrects how the driver...

A small, surgical change to the Linux Bluetooth stack closed a reproducible kernel use‑after‑free (UAF) in the SCO connection destructor — a bug that produced KASAN slab traces and host oopses and that has been tracked as CVE‑2025‑40309. The fix is narrowly scoped, straightforward to backport...

A compact but consequential Linux kernel information‑leak fix has been published under CVE‑2025‑40279: a small change in the traffic‑control connmark action (act_connmark) zero‑initializes a local struct (tc_ife / opt) in tcf_connmark_dump to stop uninitialized padding bytes from being copied...

Microsoft’s brief advisory that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate — but it is a product‑scoped attestation, not a categorical statement that no other Microsoft product could include the same vulnerable kernel code. Background /...

The Linux kernel received a surgical but important fix for a local filesystem parsing bug: a potential buffer over-read in the ext4 code path that processes superblock mount options, tracked as CVE‑2025‑40198. The change hardens parse_apply_sb_mount_options by treating the superblock field...

A subtle bug in the widely used Go Redis client library, go-redis, can cause commands to receive out-of-order responses when the library’s initial identity handshake — the CLIENT SETINFO command — times out during connection establishment, a flaw tracked as CVE-2025-29923 and fixed in the 9.5.5...

Microsoft’s public attestation that Azure Linux includes the open‑source kernel component tied to CVE‑2025‑21885 is accurate — but it is a product‑scoped inventory statement, not a universal technical guarantee that no other Microsoft product can include the same vulnerable code. Azure Linux is...

The Linux kernel fix tracked as CVE-2025-22121 patches an out‑of‑bounds read in the ext4 xattr cleanup path (ext4_xattr_inode_dec_ref_all, and Microsoft’s public advisory explicitly states that Azure Linux includes the open‑source component and is therefore potentially affected — but that...

The Go Snowflake driver (gosnowflake) was assigned CVE-2025-46327 after researchers discovered a Time-of-Check to Time-of-Use (TOCTOU) race condition in the driver’s Easy Logging feature that can let a local, low-privilege attacker manipulate logging configuration files and influence log level...

A subtle arithmetic bug in the Linux kernel’s md/md-bitmap code — tracked as CVE‑2025‑22124 — can leave a clustermd node’s first superblock page unwritten and cause a deterministic hang in mdadm’s clustermd test suite, and the fix is now in upstream stable trees; operators should treat this as a...

A subtle ordering bug in the Linux kernel’s 9p (v9fs) client can crash a system when creating subdirectories under mounted 9p trees that use POSIX ACL defaults — the defect tracked as CVE‑2025‑22070 is a NULL‑pointer dereference in fs/9p’s mkdir path that has been fixed upstream but remains an...

cJSON version 1.7.15 contains a parsing defect (tracked as CVE‑2023‑26819) that can be triggered by a crafted JSON document and lead to denial‑of‑service conditions—developers and operators should treat this as a reliability and supply‑chain risk and apply vendor or distribution fixes...

The Linux kernel received a targeted fix for a narrowly scoped but potentially disruptive ext4 race where the filesystem could attempt to start a journaling transaction after its journal had begun teardown, tracked as CVE-2025-22113; the patch introduces an explicit mount-level flag to mark the...

A newly documented Linux-kernel vulnerability, tracked as CVE-2024-23848, is a use‑after‑free in the kernel's Consumer Electronics Control (CEC) stack that can be triggered locally to produce a kernel oops or crash. The bug sits in the cec_queue_msg_fh path — code that handles file-handle...

The public advisory for CVE-2024-35794 identifies a Linux-kernel race/teardown defect in the device-mapper RAID code (dm-raid) that can leave the RAID sync thread in an unexpected state during suspend, and Microsoft’s published response confirms that Azure Linux has been inventoried and mapped...

A subtle lifecycle bug in the Linux UFS platform driver — tracked as CVE-2024-57872 — can leave a host bus adapter (HBA) detached code path improperly cleaned up during ufshcd_pltfrm_remove, producing memory leaks and an availability risk for affected systems. The fix upstream ensures the SCSI...

The integer‑overflow vulnerability tracked as CVE‑2024‑38796 in the EDK II PeCoffLoaderRelocateImage function is a real, medium‑severity memory‑corruption bug in widely reused UEFI/OVMF firmware code — and while Microsoft has publicly attested that Azure Linux includes the affected open‑source...

A newly disclosed vulnerability in the widely used file-synchronization utility rsync — tracked as CVE-2025-10158 — allows a malicious rsync receiver to induce an out-of-bounds read of a heap buffer by exploiting a negative array index; the issue was fixed upstream in a small commit but remains...

When a Certificate Isn’t Enough: Inside CVE-2025-64434, the KubeVirt TLS Identity Spoof On November 2025, a medium-severity vulnerability — tracked as CVE-2025-64434 — was published that exposed a subtle but dangerous weakness in how KubeVirt handled mutual TLS between its components. The short...

A type‑confusion bug in libxslt’s internal node representation — where the same psvi memory field is reused for stylesheet and input nodes — can be forced to misinterpret an XML document and produce out‑of‑bounds accesses, crashes, and memory corruption that result in reliable denial‑of‑service...