The Linux kernel security community disclosed CVE-2025-40336, a vulnerability in the DRM gpusvm code that mishandles hmm_pfn_to_map_order when an HMM range partially covers a huge page; the bug could allow the kernel to map memory outside the intended range (and potentially outside the process’s...
Microsoft’s advisory for CVE-2025-62565 confirms a use‑after‑free bug in the Windows Shell (File Explorer) that can be triggered by an authorized local user to escalate privileges to SYSTEM; the vendor has recorded the issue in its Security Update Guide and independent trackers currently rate it...
CVE-2025-62567 is a newly recorded vulnerability in Microsoft’s Hyper‑V virtualization stack that has been flagged as a Denial of Service (DoS) condition caused by an integer underflow (wrap/wraparound); the entry is listed in public trackers and in Microsoft’s Security Update Guide, but...
Microsoft’s advisory language and public vulnerability metrics are often shorthand for two different concerns: what an attacker can achieve and how the vulnerable code is actually invoked. That distinction lies at the heart of the current public record around CVE-2025-62563 — a Microsoft Excel...
A new kernel fix quietly landed this week that closes a subtle NTFS metadata handling issue in the in‑kernel ntfs3 driver: CVE‑2025‑40313, described as “ntfs3: pretend $Extend records as regular files.” The change is small in code but important in principle — it corrects how the driver...
A small, surgical change to the Linux Bluetooth stack closed a reproducible kernel use‑after‑free (UAF) in the SCO connection destructor — a bug that produced KASAN slab traces and host oopses and that has been tracked as CVE‑2025‑40309. The fix is narrowly scoped, straightforward to backport...
A compact but consequential Linux kernel information‑leak fix has been published under CVE‑2025‑40279: a small change in the traffic‑control connmark action (act_connmark) zero‑initializes a local struct (tc_ife / opt) in tcf_connmark_dump to stop uninitialized padding bytes from being copied...
Microsoft’s brief advisory that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate — but it is a product‑scoped attestation, not a categorical statement that no other Microsoft product could include the same vulnerable kernel code. Background /...
The Linux kernel received a surgical but important fix for a local filesystem parsing bug: a potential buffer over-read in the ext4 code path that processes superblock mount options, tracked as CVE‑2025‑40198. The change hardens parse_apply_sb_mount_options by treating the superblock field...
A subtle bug in the widely used Go Redis client library, go-redis, can cause commands to receive out-of-order responses when the library’s initial identity handshake — the CLIENT SETINFO command — times out during connection establishment, a flaw tracked as CVE-2025-29923 and fixed in the 9.5.5...
Microsoft’s public attestation that Azure Linux includes the open‑source kernel component tied to CVE‑2025‑21885 is accurate — but it is a product‑scoped inventory statement, not a universal technical guarantee that no other Microsoft product can include the same vulnerable code. Azure Linux is...
The Linux kernel fix tracked as CVE-2025-22121 patches an out‑of‑bounds read in the ext4 xattr cleanup path (ext4_xattr_inode_dec_ref_all, and Microsoft’s public advisory explicitly states that Azure Linux includes the open‑source component and is therefore potentially affected — but that...
The Go Snowflake driver (gosnowflake) was assigned CVE-2025-46327 after researchers discovered a Time-of-Check to Time-of-Use (TOCTOU) race condition in the driver’s Easy Logging feature that can let a local, low-privilege attacker manipulate logging configuration files and influence log level...
A subtle arithmetic bug in the Linux kernel’s md/md-bitmap code — tracked as CVE‑2025‑22124 — can leave a clustermd node’s first superblock page unwritten and cause a deterministic hang in mdadm’s clustermd test suite, and the fix is now in upstream stable trees; operators should treat this as a...
A subtle ordering bug in the Linux kernel’s 9p (v9fs) client can crash a system when creating subdirectories under mounted 9p trees that use POSIX ACL defaults — the defect tracked as CVE‑2025‑22070 is a NULL‑pointer dereference in fs/9p’s mkdir path that has been fixed upstream but remains an...
cJSON version 1.7.15 contains a parsing defect (tracked as CVE‑2023‑26819) that can be triggered by a crafted JSON document and lead to denial‑of‑service conditions—developers and operators should treat this as a reliability and supply‑chain risk and apply vendor or distribution fixes...
The Linux kernel received a targeted fix for a narrowly scoped but potentially disruptive ext4 race where the filesystem could attempt to start a journaling transaction after its journal had begun teardown, tracked as CVE-2025-22113; the patch introduces an explicit mount-level flag to mark the...
A newly documented Linux-kernel vulnerability, tracked as CVE-2024-23848, is a use‑after‑free in the kernel's Consumer Electronics Control (CEC) stack that can be triggered locally to produce a kernel oops or crash. The bug sits in the cec_queue_msg_fh path — code that handles file-handle...
The public advisory for CVE-2024-35794 identifies a Linux-kernel race/teardown defect in the device-mapper RAID code (dm-raid) that can leave the RAID sync thread in an unexpected state during suspend, and Microsoft’s published response confirms that Azure Linux has been inventoried and mapped...
A subtle lifecycle bug in the Linux UFS platform driver — tracked as CVE-2024-57872 — can leave a host bus adapter (HBA) detached code path improperly cleaned up during ufshcd_pltfrm_remove, producing memory leaks and an availability risk for affected systems. The fix upstream ensures the SCSI...