Sicherheitswarnungen

[ceph] parse_longname(): strrchr() expects NUL-terminated string

A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.

AIDE improper output neutralization vulnerability

AIDE null pointer dereference when reading incorrectly encoded xattr attributes from database (local DoS)

arm64/entry: Mask DAIF in cpu_switch_to(), call_on_irq_stack()

atm: clip: Fix memory leak of struct clip_vcc.

Azure Databricks Elevation of Privilege Vulnerability

Azure OpenAI Elevation of Privilege Vulnerability

Azure Portal Elevation of Privilege Vulnerability

Azure Stack Hub Information Disclosure Vulnerability

Azure Stack Hub Information Disclosure Vulnerability

Azure Virtual Machines Information Disclosure Vulnerability

Azure Virtual Machines Spoofing Vulnerability

benet: fix BUG when creating VFs

Bluetooth: eir: Fix using strlen with hdev->{dev_name,short_name}

Bluetooth: hci_sync: fix double free in 'hci_discovery_filter_clear()'

bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls

bpf: Disable migration in nf_hook_run_bpf().

bpf: Fix oob access in cgroup local storage

bpf: Reject %p% format string in bprintf-like helpers

bpf: Reject narrower access to pointer ctx fields

btrfs: fix assertion when building free space tree

Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled->face == NULL" assertion failure for _cairo_ft_unscaled_font_fini in cairo-ft-font.c.

can: netlink: can_changelink(): fix NULL pointer deref of struct can_priv::do_set_mode

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.

clk: davinci: Add NULL check in davinci_lpsc_clk_register()

clk: xilinx: vcu: unregister pll_post only if registered correctly

clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns

cmake cmForEachCommand.cxx ReplayItems assertion

comedi: aio_iiro_16: Fix bit shift out of bounds

comedi: pcl812: Fix bit shift out of bounds

crypto: ccp - Fix crash when rebind ccp device for ccp.ko

Desktop Window Manager Elevation of Privilege Vulnerability

Desktop Windows Manager Remote Code Execution Vulnerability

DirectX Graphics Kernel Denial of Service Vulnerability

DirectX Graphics Kernel Elevation of Privilege Vulnerability

DirectX Graphics Kernel Remote Code Execution Vulnerability

dmaengine: nbpfaxi: Fix memory corruption in probe()

drm/amdkfd: Don't call mmput from MMU notifier callback

drm/rockchip: vop2: fail cleanly if missing a primary plane for a video-port

drm/sched: Increment job count before swapping tail spsc queue

drm/tegra: nvdec: Fix dma_alloc_coherent error check

eventpoll: Fix semi-unbounded recursion

f2fs: compress: fix UAF of f2fs_inode_info in f2fs_free_dic

f2fs: fix KMSAN uninit-value in extent_info usage

f2fs: fix to avoid out-of-boundary access in devs.path

f2fs: fix to avoid out-of-boundary access in dnode page

f2fs: fix to avoid panic in f2fs_evict_inode

f2fs: fix to avoid UAF in f2fs_sync_inode_meta()

f2fs: fix to trigger foreground gc during f2fs_map_blocks() in lfs mode