In the Linux kernel, the following vulnerability has been resolved: smb: client: fix wrong index reference in smb2_compound_op() In smb2_compound_op(), the loop that processes each command’s response uses wrong indices when accessing response bufferes....
In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix race during abort for file descriptors fput() doesn’t actually call file_operations release() synchronously, it puts the file on a work queue and...
In the Linux kernel, the following vulnerability has been resolved: fbcon: fix integer overflow in fbcon_do_set_font Fix integer overflow vulnerabilities in fbcon_do_set_font() where font size calculations could overflow when handling user-controlled font parameters. The...
In the Linux kernel, the following vulnerability has been resolved: i40e: add max boundary check for VF filters There is no check for max filters that VF can request. Add it. More information :...
In the Linux kernel, the following vulnerability has been resolved: i40e: fix validation of VF state in get resources VF state I40E_VF_STATE_ACTIVE is not the only state in which VF is actually active so...
In the Linux kernel, the following vulnerability has been resolved: i40e: fix input validation logic for action_meta Fix condition to check ‘greater or equal’ to prevent OOB dereference. More information : https://git.kernel.org/stable/c/28465770ca3b694286ff9ed6dfd558413f57d98f
In the Linux kernel, the following vulnerability has been resolved: i40e: fix idx validation in config queues msg Ensure idx is within range of active/initialized TCs when iterating over vf->ch[idx] in i40e_vc_config_queues_msg(). More information...
In the Linux kernel, the following vulnerability has been resolved: i40e: fix idx validation in i40e_validate_queue_map Ensure idx is within range of active/initialized TCs when iterating over vf->ch[idx] in i40e_validate_queue_map(). More information : https://git.kernel.org/stable/c/34dfac0c904829967d500c51f216916ce1452957
The Dynamically Display Posts plugin for WordPress is vulnerable to SQL Injection via the ‘tax_query’ parameter in all versions up to, and including, 1.1 due to insufficient escaping on the user supplied parameter and...
The WPBakery Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the vc_custom_heading shortcode in all versions up to, and including, 8.6.1. This is due to insufficient restriction of allowed HTML...
The WPBakery Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom JS module in all versions up to, and including, 8.6.1. This is due to insufficient input sanitization and...
The Ova Advent plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s shortcodes in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping on user...
The Lisfinity Core – Lisfinity Core plugin used for pebas® Lisfinity WordPress theme plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.0. This is due to the...
In Eclipse ThreadX before 6.4.3, when memory protection is enabled, syscall parameters verification wasn’t enough, allowing an attacker to obtain an arbitrary memory read/write. More information : https://github.com/eclipse-threadx/threadx/security/advisories/GHSA-76hh-wrj5-hr2v