Security Warnings

.NET and Visual Studio Denial of Service Vulnerability

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

<vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner

Active Directory Certificate Services Elevation of Privilege Vulnerability

Airlift.microsoft.com Elevation of Privilege Vulnerability

arm64/sve: Discard stale CPU state when handling SVE traps

Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

Azure Stack HCI Elevation of Privilege Vulnerability

Bluetooth: ISO: Fix UAF on iso_sock_timeout

Bluetooth: SCO: Fix UAF on sco_sock_timeout

bpf: Check validity of link-&gt;type in bpf_link_show_fdinfo()

bpf: Fix overloading of MEM_UNINIT's meaning

btrfs: fix use-after-free of block device file in __btrfs_free_extra_devids()

Denial of Service through Data corruption in gRPC-C++

dm cache: fix flushing uninitialized delayed_work on cache_ctr error

drm/xe/ufence: Prefetch ufence addr to catch bogus address

firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier()

firmware: arm_scmi: Fix the double free in scmi_debugfs_common_setup()

fs/ntfs3: Add rough attr alloc_size check

fs/ntfs3: Additional check in ntfs_file_release

fsdax: dax_unshare_iter needs to copy entire blocks

GNOME libsoup before 3.6.0 allows HTTP request smuggling in some configurations

GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict.

GNOME libsoup before 3.6.1 has an infinite loop and memory consumption. during the reading of certain patterns of WebSocket data from clients.

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses to enable on-the-fly diagnosis that byte compiles untrusted Emacs Lisp source code.)

iov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP

ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create

ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp

LightGBM Remote Code Execution Vulnerability

macsec: Fix use-after-free while sending the offloading packet

Microsoft Azure PolicyWatch Elevation of Privilege Vulnerability

Microsoft Dynamics 365 Sales Spoofing Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Exchange Server Spoofing Vulnerability

Microsoft Office Graphics Remote Code Execution Vulnerability