Alertes de sécurité

9p/trans_fd: p9_fd_request: kick rx thread if EPOLLIN

ALSA: dice: fix buffer overflow in detect_stream_formats()

amd/amdkfd: enhance kfd process check in switch partition

Apache HTTP Server: mod_md (ACME), unintended retry intervals

Apache HTTP Server: NTLM Leakage on Windows through UNC SSRF

Apache HTTP Server: Server Side Includes adds query string to #exec cmd=...

Application Information Service Elevation of Privilege Vulnerability

arrayLimit bypass in bracket notation allows DoS via memory exhaustion

ASoC: Intel: avs: Do not share the name pointer between components

Azure Cosmos DB Spoofing Vulnerability

Azure Monitor Agent Remote Code Execution Vulnerability

bfs: Reconstruct file type when loading from disk

Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF

Bluetooth: hci_core: lookup hci_conn on RX path on protocol side

Bluetooth: hci_event: validate skb length for unknown CC opcode

bpf: Sync pending IRQ work before freeing ring buffer

can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs

ceph: fix crash in process_v2_sparse_read() for encrypted directories

ceph: fix multifs mds auth caps issue

DirectX Graphics Kernel Elevation of Privilege Vulnerability

drm/amd/display: Cache streams targeting link when performing LT automation

drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked()

drm/gpusvm: fix hmm_pfn_to_map_order() usage

drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb

drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE

drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test.

Excessive resource consumption when printing error string for host certificate validation in crypto/x509

Expr has Denial of Service via Unbounded Recursion in Builtin Functions

ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock()

f2fs: fix to detect potential corrupted nid in free_nid_list

fbdev: bitblit: bound-check glyph index in bit_putcs*

GitHub Copilot for Jetbrains Remote Code Execution Vulnerability

In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)

In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

jfs: Verify inode mode when loading from disk

KVM: arm64: Check the untrusted offset in FF-A memory share

libceph: fix potential use-after-free in have_mon_and_osd_map()

libceph: prevent potential out-of-bounds writes in handle_auth_session_key()

libceph: replace BUG_ON with bounds check for map->max_osd

LIBPNG has an out-of-bounds read in png_image_read_composite

Libsoup: libsoup: duplicate host header handling causes host-parsing discrepancy (first- vs last-value wins)

macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse

MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability

Microsoft Access Remote Code Execution Vulnerability

Microsoft Brokering File System Elevation of Privilege Vulnerability

Microsoft Brokering File System Elevation of Privilege Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability