Lista CVE - 2025 / Aprile
Visualizzazione 2501 - 2600 di 4033 CVE per Aprile 2025 (Pagina 26 di 41)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2025-22056 | 2025-04-16 | netfilter: nft_tunnel: fix geneve_opt type confusion addition |
| CVE-2025-22057 | 2025-04-16 | net: decrease cached dst counters in dst_release |
| CVE-2025-22058 | 2025-04-16 | udp: Fix memory accounting leak. |
| CVE-2025-22059 | 2025-04-16 | udp: Fix multiple wraparounds of sk->sk_rmem_alloc. |
| CVE-2025-22060 | 2025-04-16 | net: mvpp2: Prevent parser TCAM memory corruption |
| CVE-2025-22061 | 2025-04-16 | net: airoha: Fix qid report in airoha_tc_get_htb_get_leaf_queue() |
| CVE-2025-22062 | 2025-04-16 | sctp: add mutual exclusion in proc_sctp_do_udp_port() |
| CVE-2025-22063 | 2025-04-16 | netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets |
| CVE-2025-22064 | 2025-04-16 | netfilter: nf_tables: don't unregister hook when table is dormant |
| CVE-2025-22065 | 2025-04-16 | idpf: fix adapter NULL pointer dereference on reboot |
| CVE-2025-22066 | 2025-04-16 | ASoC: imx-card: Add NULL check in imx_card_probe() |
| CVE-2025-22067 | 2025-04-16 | spi: cadence: Fix out-of-bounds array access in cdns_mrvl_xspi_setup_clock() |
| CVE-2025-22068 | 2025-04-16 | ublk: make sure ubq->canceling is set when queue is frozen |
| CVE-2025-22069 | 2025-04-16 | riscv: fgraph: Fix stack layout to match __arch_ftrace_regs argument of ftrace_return_to_handler |
| CVE-2025-22070 | 2025-04-16 | fs/9p: fix NULL pointer dereference on mkdir |
| CVE-2025-22071 | 2025-04-16 | spufs: fix a leak in spufs_create_context() |
| CVE-2025-22072 | 2025-04-16 | spufs: fix gang directory lifetimes |
| CVE-2025-22073 | 2025-04-16 | spufs: fix a leak on spufs_new_file() failure |
| CVE-2025-22074 | 2025-04-16 | ksmbd: fix r_count dec/increment mismatch |
| CVE-2025-22075 | 2025-04-16 | rtnetlink: Allocate vfinfo size for VF GUIDs when supported |
| CVE-2025-22076 | 2025-04-16 | exfat: fix missing shutdown check |
| CVE-2025-22077 | 2025-04-16 | Revert "smb: client: fix TCP timers deadlock after rmmod" |
| CVE-2025-22078 | 2025-04-16 | staging: vchiq_arm: Fix possible NPR of keep-alive thread |
| CVE-2025-22079 | 2025-04-16 | ocfs2: validate l_tree_depth to avoid out-of-bounds access |
| CVE-2025-22080 | 2025-04-16 | fs/ntfs3: Prevent integer overflow in hdr_first_de() |
| CVE-2025-22081 | 2025-04-16 | fs/ntfs3: Fix a couple integer overflows on 32bit systems |
| CVE-2025-22082 | 2025-04-16 | iio: backend: make sure to NULL terminate stack buffer |
| CVE-2025-22083 | 2025-04-16 | vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint |
| CVE-2025-22084 | 2025-04-16 | w1: fix NULL pointer dereference in probe |
| CVE-2025-22085 | 2025-04-16 | RDMA/core: Fix use-after-free when rename device name |
| CVE-2025-22086 | 2025-04-16 | RDMA/mlx5: Fix mlx5_poll_one() cur_qp update flow |
| CVE-2025-22087 | 2025-04-16 | bpf: Fix array bounds error with may_goto |
| CVE-2025-22088 | 2025-04-16 | RDMA/erdma: Prevent use-after-free in erdma_accept_newconn() |
| CVE-2025-22089 | 2025-04-16 | RDMA/core: Don't expose hw_counters outside of init net namespace |
| CVE-2025-22090 | 2025-04-16 | x86/mm/pat: Fix VM_PAT handling when fork() fails in copy_page_range() |
| CVE-2025-22091 | 2025-04-16 | RDMA/mlx5: Fix page_size variable overflow |
| CVE-2025-22092 | 2025-04-16 | PCI: Fix NULL dereference in SR-IOV VF creation error path |
| CVE-2025-22093 | 2025-04-16 | drm/amd/display: avoid NPD when ASIC does not support DMUB |
| CVE-2025-22094 | 2025-04-16 | powerpc/perf: Fix ref-counting on the PMU 'vpa_pmu' |
| CVE-2025-22095 | 2025-04-16 | PCI: brcmstb: Fix error path after a call to regulator_bulk_get() |
| CVE-2025-22096 | 2025-04-16 | drm/msm/gem: Fix error code msm_parse_deps() |
| CVE-2025-22097 | 2025-04-16 | drm/vkms: Fix use after free and double free on init error |
| CVE-2025-22098 | 2025-04-16 | drm: zynqmp_dp: Fix a deadlock in zynqmp_dp_ignore_hpd_set() |
| CVE-2025-22099 | 2025-04-16 | drm: xlnx: zynqmp_dpsub: Add NULL check in zynqmp_audio_init |
| CVE-2025-22100 | 2025-04-16 | drm/panthor: Fix race condition when gathering fdinfo group samples |
| CVE-2025-22101 | 2025-04-16 | net: libwx: fix Tx L4 checksum |
| CVE-2025-22102 | 2025-04-16 | Bluetooth: btnxpuart: Fix kernel panic during FW release |
| CVE-2025-22103 | 2025-04-16 | net: fix NULL pointer dereference in l3mdev_l3_rcv |
| CVE-2025-22104 | 2025-04-16 | ibmvnic: Use kernel helpers for hex dumps |
| CVE-2025-22105 | 2025-04-16 | bonding: check xdp prog when set bond mode |
| CVE-2025-22106 | 2025-04-16 | vmxnet3: unregister xdp rxq info in the reset path |
| CVE-2025-22107 | 2025-04-16 | net: dsa: sja1105: fix kasan out-of-bounds warning in sja1105_table_delete_entry() |
| CVE-2025-22108 | 2025-04-16 | bnxt_en: Mask the bd_cnt field in the TX BD properly |
| CVE-2025-22109 | 2025-04-16 | ax25: Remove broken autobind |
| CVE-2025-22110 | 2025-04-16 | netfilter: nfnetlink_queue: Initialize ctx to avoid memory allocation error |
| CVE-2025-22111 | 2025-04-16 | net: Remove RTNL dance for SIOCBRADDIF and SIOCBRDELIF. |
| CVE-2025-22112 | 2025-04-16 | eth: bnxt: fix out-of-range access of vnic_info array |
| CVE-2025-22113 | 2025-04-16 | ext4: avoid journaling sb update on error if journal is destroying |
| CVE-2025-22114 | 2025-04-16 | btrfs: don't clobber ret in btrfs_validate_super() |
| CVE-2025-22115 | 2025-04-16 | btrfs: fix block group refcount race in btrfs_create_pending_block_groups() |
| CVE-2025-22116 | 2025-04-16 | idpf: check error for register_netdev() on init |
| CVE-2025-22117 | 2025-04-16 | ice: fix using untrusted value of pkt_len in ice_vc_fdir_parse_raw() |
| CVE-2025-22118 | 2025-04-16 | ice: validate queue quanta parameters to prevent OOB access |
| CVE-2025-22119 | 2025-04-16 | wifi: cfg80211: init wiphy_work before allocating rfkill fails |
| CVE-2025-22120 | 2025-04-16 | ext4: goto right label 'out_mmap_sem' in ext4_setattr() |
| CVE-2025-22121 | 2025-04-16 | ext4: fix out-of-bound read in ext4_xattr_inode_dec_ref_all() |
| CVE-2025-22122 | 2025-04-16 | block: fix adding folio to bio |
| CVE-2025-22123 | 2025-04-16 | f2fs: fix to avoid accessing uninitialized curseg |
| CVE-2025-22124 | 2025-04-16 | md/md-bitmap: fix wrong bitmap_limit for clustermd when write sb |
| CVE-2025-22125 | 2025-04-16 | md/raid1,raid10: don't ignore IO flags |
| CVE-2025-22126 | 2025-04-16 | md: fix mddev uaf while iterating all_mddevs list |
| CVE-2025-22127 | 2025-04-16 | f2fs: fix potential deadloop in prepare_compress_overwrite() |
| CVE-2025-22128 | 2025-04-16 | wifi: ath12k: Clear affinity hint before calling ath12k_pci_free_irq() in error path |
| CVE-2025-23129 | 2025-04-16 | wifi: ath11k: Clear affinity hint before calling ath11k_pcic_free_irq() in error path |
| CVE-2025-23130 | 2025-04-16 | f2fs: fix to avoid panic once fallocation fails for pinfile |
| CVE-2025-23131 | 2025-04-16 | dlm: prevent NPD when writing a positive value to event_done |
| CVE-2025-23132 | 2025-04-16 | f2fs: quota: fix to avoid warning in dquot_writeback_dquots() |
| CVE-2025-23133 | 2025-04-16 | wifi: ath11k: update channel list in reg notifier instead reg worker |
| CVE-2025-23134 | 2025-04-16 | ALSA: timer: Don't take register_mutex with copy_from/to_user() |
| CVE-2025-23135 | 2025-04-16 | RISC-V: KVM: Teardown riscv specific bits after kvm_exit |
| CVE-2025-23136 | 2025-04-16 | thermal: int340x: Add NULL check for adev |
| CVE-2025-23137 | 2025-04-16 | cpufreq/amd-pstate: Add missing NULL ptr check in amd_pstate_update |
| CVE-2025-23138 | 2025-04-16 | watch_queue: fix pipe accounting mismatch |
| CVE-2025-3694 | 2025-04-16 | SourceCodester Web-based Pharmacy Product Management System Login sql injection |
| CVE-2025-3696 | 2025-04-16 | SourceCodester Web-based Pharmacy Product Management System search_stock. php sql injection |
| CVE-2025-3697 | 2025-04-16 | SourceCodester Web-based Pharmacy Product Management System edit-product.php sql injection |
| CVE-2024-56736 | 2025-04-16 | Apache HertzBeat: Server-Side Request Forgery (SSRF) in Api Config Oss |
| CVE-2025-20178 | 2025-04-16 | Cisco Secure Network Analytics Privilege Escalation Vulnerability |
| CVE-2025-20150 | 2025-04-16 | Cisco Nexus Dashboard Username Enumeration Vulnerability |
| CVE-2025-2564 | 2025-04-16 | Unauthorized View Access to Archived Channel Member Info |
| CVE-2025-20236 | 2025-04-16 | Cisco Webex App Client-Side Remote Code Execution Vulnerability |
| CVE-2024-22314 | 2025-04-16 | IBM Storage Defender - Resiliency Service information disclosure |
| CVE-2025-3733 | 2025-04-16 | baguetteBox.js - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-034 |
| CVE-2025-3734 | 2025-04-16 | Stage File Proxy - Moderately critical - Denial of Service - SA-CONTRIB-2025-035 |
| CVE-2025-3735 | 2025-04-16 | Panelizer (obsolete) - Critical - Unsupported - SA-CONTRIB-2025-036 |
| CVE-2025-3736 | 2025-04-16 | Simple GTM - Critical - Unsupported - SA-CONTRIB-2025-037 |
| CVE-2025-3737 | 2025-04-16 | Google Maps: Store Locator - Critical - Unsupported - SA-CONTRIB-2025-038 |
| CVE-2025-3738 | 2025-04-16 | Google Optimize - Critical - Unsupported - SA-CONTRIB-2025-039 |
| CVE-2025-3739 | 2025-04-16 | Drupal 8 Google Optimize Hide Page - Critical - Unsupported - SA-CONTRIB-2025-040 |
| CVE-2025-22872 | 2025-04-16 | Incorrect Neutralization of Input During Web Page Generation in x/net in golang.org/x/net |