vulnerability

The Linux kernel received a surgical but important fix for a local filesystem parsing bug: a potential buffer over-read in the ext4 code path that processes superblock mount options, tracked as CVE‑2025‑40198. The change hardens parse_apply_sb_mount_options by treating the superblock field...

A subtle bug in the widely used Go Redis client library, go-redis, can cause commands to receive out-of-order responses when the library’s initial identity handshake — the CLIENT SETINFO command — times out during connection establishment, a flaw tracked as CVE-2025-29923 and fixed in the 9.5.5...

Microsoft’s public attestation that Azure Linux includes the open‑source kernel component tied to CVE‑2025‑21885 is accurate — but it is a product‑scoped inventory statement, not a universal technical guarantee that no other Microsoft product can include the same vulnerable code. Azure Linux is...

The Linux kernel fix tracked as CVE-2025-22121 patches an out‑of‑bounds read in the ext4 xattr cleanup path (ext4_xattr_inode_dec_ref_all, and Microsoft’s public advisory explicitly states that Azure Linux includes the open‑source component and is therefore potentially affected — but that...

The Go Snowflake driver (gosnowflake) was assigned CVE-2025-46327 after researchers discovered a Time-of-Check to Time-of-Use (TOCTOU) race condition in the driver’s Easy Logging feature that can let a local, low-privilege attacker manipulate logging configuration files and influence log level...

A subtle arithmetic bug in the Linux kernel’s md/md-bitmap code — tracked as CVE‑2025‑22124 — can leave a clustermd node’s first superblock page unwritten and cause a deterministic hang in mdadm’s clustermd test suite, and the fix is now in upstream stable trees; operators should treat this as a...

A subtle ordering bug in the Linux kernel’s 9p (v9fs) client can crash a system when creating subdirectories under mounted 9p trees that use POSIX ACL defaults — the defect tracked as CVE‑2025‑22070 is a NULL‑pointer dereference in fs/9p’s mkdir path that has been fixed upstream but remains an...

cJSON version 1.7.15 contains a parsing defect (tracked as CVE‑2023‑26819) that can be triggered by a crafted JSON document and lead to denial‑of‑service conditions—developers and operators should treat this as a reliability and supply‑chain risk and apply vendor or distribution fixes...

The Linux kernel received a targeted fix for a narrowly scoped but potentially disruptive ext4 race where the filesystem could attempt to start a journaling transaction after its journal had begun teardown, tracked as CVE-2025-22113; the patch introduces an explicit mount-level flag to mark the...

A newly documented Linux-kernel vulnerability, tracked as CVE-2024-23848, is a use‑after‑free in the kernel's Consumer Electronics Control (CEC) stack that can be triggered locally to produce a kernel oops or crash. The bug sits in the cec_queue_msg_fh path — code that handles file-handle...

The public advisory for CVE-2024-35794 identifies a Linux-kernel race/teardown defect in the device-mapper RAID code (dm-raid) that can leave the RAID sync thread in an unexpected state during suspend, and Microsoft’s published response confirms that Azure Linux has been inventoried and mapped...

A subtle lifecycle bug in the Linux UFS platform driver — tracked as CVE-2024-57872 — can leave a host bus adapter (HBA) detached code path improperly cleaned up during ufshcd_pltfrm_remove, producing memory leaks and an availability risk for affected systems. The fix upstream ensures the SCSI...

The integer‑overflow vulnerability tracked as CVE‑2024‑38796 in the EDK II PeCoffLoaderRelocateImage function is a real, medium‑severity memory‑corruption bug in widely reused UEFI/OVMF firmware code — and while Microsoft has publicly attested that Azure Linux includes the affected open‑source...

A newly disclosed vulnerability in the widely used file-synchronization utility rsync — tracked as CVE-2025-10158 — allows a malicious rsync receiver to induce an out-of-bounds read of a heap buffer by exploiting a negative array index; the issue was fixed upstream in a small commit but remains...

When a Certificate Isn’t Enough: Inside CVE-2025-64434, the KubeVirt TLS Identity Spoof On November 2025, a medium-severity vulnerability — tracked as CVE-2025-64434 — was published that exposed a subtle but dangerous weakness in how KubeVirt handled mutual TLS between its components. The short...

A type‑confusion bug in libxslt’s internal node representation — where the same psvi memory field is reused for stylesheet and input nodes — can be forced to misinterpret an XML document and produce out‑of‑bounds accesses, crashes, and memory corruption that result in reliable denial‑of‑service...

Libssh contains a memory‑exhaustion defect in its key‑exchange handling (CVE‑2025‑8277) that can, under repeated rekeying attempts with incorrect KEX guesses, leak ephemeral key material and gradually exhaust client memory — a low‑severity but practical availability risk for any software that...

A subtle bug in the Go standard library’s net/http client can restore and transmit sensitive headers after a specific sequence of redirects, potentially leaking Authorization tokens and other credentials to unintended targets—security teams and Go developers must treat this as a material risk...

A subtle caching bug in the OCFS2 kernel code — tracked as CVE-2025-40233 — can leave the filesystem’s extent map cache stale after extent moves or defragmentation, allowing later I/O to observe outdated extent flags and triggering a kernel BUG; maintainers fixed the issue by explicitly clearing...

A stack-buffer overflow in Fluent Bit’s Docker input plugin has been cataloged as CVE-2025-12970, and it’s the kind of flaw that turns a seemingly innocuous container name into a potential foothold for attackers. The vulnerability stems from the in_docker plugin’s extract_name routine copying...