CVE CyberSecurity Database News (Page 337)

Jan 21, 2025 API

CVE-2025-21664 - Fixing a Race Condition in Linux Kernel's dm-thin with RCU-Safe List Traversal

The Linux kernel is incredible, but like any complex system, it sometimes suffers from subtle bugs—especially around concurrency. One such issue, CVE-2025-21664, affected the

Jan 21, 2025 Exploit

CVE-2025-21663 - Linux Kernel Tegra MGBE Ethernet DoS via Incorrect IOMMU Stream ID Handling

CVE-2025-21663 impacts the Linux kernel’s dwmac-tegra (Nvidia Tegra platform Ethernet) driver in how it handles “IOMMU Stream IDs (SIDs)” for network controllers. This bug

Jan 21, 2025 Exploit

CVE-2025-21662 - Linux Kernel net/mlx5 Command Allocation Lock-up Vulnerability Explained

--- Introduction CVE-2025-21662 is a recently resolved issue in the Linux kernel's net/mlx5 driver that could cause processes to hang indefinitely under

Jan 21, 2025

CVE-2025-21660 - How a Linux Kernel ksmbd Path Bug Could Lead to Unexpected Filename Creation

In early 2025, a subtle but potent vulnerability was discovered and patched in the Linux kernel codebase, specifically within the ksmbd fileserver implementation. The vulnerability,

Jan 21, 2025 API Exploit

CVE-2025-21659 - How a Linux Kernel Netdev Bug Could Let Attackers Access NAPI Across Namespaces

In June 2024, security researchers and kernel maintainers discovered and patched a serious issue in the Linux kernel’s network device (netdev) subsystem. This bug,