Sicherheitswarnungen

accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages()

ACPI: video: Fix use-after-free in acpi_video_switch_brightness()

Agentic AI and Visual Studio Code Remote Code Execution Vulnerability

An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).

Azure Application Gateway Elevation of Privilege Vulnerability

Azure Application Gateway Elevation of Privilege Vulnerability

Azure Bastion Elevation of Privilege Vulnerability

Azure Monitor Agent Remote Code Execution Vulnerability

Azure Monitor Elevation of Privilege Vulnerability

blk-mq: fix potential deadlock while nr_requests grown

btrfs: avoid potential out-of-bounds in btrfs_encode_fh()

BusyBox wget thru 1.3.7 accepted raw CR (0x0D)/LF (0x0A) and other C0 control bytes in the HTTP request-target (path/query), allowing the request line to be split and attacker-controlled headers to be injected. To preserve the HTTP/1.1 request-line shape METHOD SP request-target SP HTTP/1.1, a raw space (0x20) in the request-target must also be rejected (clients should use %20).

can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled

Configuration Manager Elevation of Privilege Vulnerability

containerd affected by a local privilege escalation via wide permissions on CRI directory

cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request()

crypto: hisilicon/qm - request reserved interrupt for virtual function

crypto: rng - Ensure set_ent is always present

Customer Experience Improvement Program (CEIP) Elevation of Privilege Vulnerability

CVE-2025-12816

CVE-2025-12969

CVE-2025-12970

CVE-2025-12977

Denial of service vulnerability in HAProxy mjson library

DirectX Graphics Kernel Denial of Service Vulnerability

DirectX Graphics Kernel Elevation of Privilege Vulnerability

DirectX Graphics Kernel Elevation of Privilege Vulnerability

DoS Vulnerability in wolfSSL TLS 1.3 CKS Extension

drm/vmwgfx: Fix a null-ptr access in the cursor snooper

drm/vmwgfx: Fix Use-after-free in validation

Dynamics 365 Field Service (online) Spoofing Vulnerability

Dynamics 365 Field Service (online) Spoofing Vulnerability

Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability

ext4: avoid potential buffer over-read in parse_apply_sb_mount_options()

ext4: detect invalid INLINE_DATA + EXTENTS flag combination

ext4: guard against EA inode refcount underflow in xattr update

ext4: verify orphan file size is not too big

Forward Secrecy Violation in WolfSSL TLS 1.3

GDI+ Remote Code Execution Vulnerability

GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability

GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability

Glib: integer overflow in in g_escape_uri_string()

Grub2: grub2: out-of-bounds write via malicious usb device

Grub2: missing unregister call for gettext command may lead to use-after-free

Grub2: missing unregister call for normal commands may lead to use-after-free

Grub2: missing unregister call for normal_exit command may lead to use-after-free

Grub2: use-after-free in grub_file_close()

Grub2: use-after-free in net_set_vlan

Host Process for Windows Tasks Elevation of Privilege Vulnerability

Improper Validation of Signature Algorithm Used in TLS 1.3 CertificateVerify