Ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 3976-4000 di 4265 risultati

Pagina 160 di 171

Avvisi di Sicurezza

CERT	Alert	Data	#
MSRC Security Update	CVE-2025-65637 A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving Writer() unusable and causing application unavailability (DoS). This affects versions < 1.8.3, 1.9.0, and 1.9.2. The issue is fixed in 1.8.3, 1.9.1, and 1.9.3+, where the input is chunked and the writer continues to function even if an error is logged.	07-12-2025	3976
MSRC Security Update	CVE-2025-12084 Quadratic complexity in node ID cache clearing	07-12-2025	3977
MSRC Security Update	CVE-2025-61727 Improper application of excluded DNS name constraints when verifying wildcard names in crypto/x509	07-12-2025	3978
MSRC Security Update	CVE-2025-66293 LIBPNG has an out-of-bounds read in png_image_read_composite	06-12-2025	3979
MSRC Security Update	CVE-2024-6485 XSS in Bootstrap button component	06-12-2025	3980
MSRC Security Update	CVE-2025-61729 Excessive resource consumption when printing error string for host certificate validation in crypto/x509	06-12-2025	3981
MSRC Security Update	CVE-2025-13837 Out-of-memory when loading Plist	06-12-2025	3982
MSRC Security Update	CVE-2025-13836 Excessive read buffering DoS in http.client	06-12-2025	3983
MSRC Security Update	CVE-2022-24736 A Malformed Lua script can crash Redis	06-12-2025	3984
MSRC Security Update	CVE-2022-24735 Lua scripts can be manipulated to overcome ACL rules in Redis	06-12-2025	3985
MSRC Security Update	CVE-2025-2486 UEFI Shell accessible in AAVMF with Secure Boot enabled on Ubuntu	06-12-2025	3986
MSRC Security Update	CVE-2025-10158 Rsync: Out of bounds array access via negative index	06-12-2025	3987
MSRC Security Update	Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	06-12-2025	3988
MSRC Security Update	Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	06-12-2025	3989
MSRC Security Update	CVE-2025-11731 Libxslt: type confusion in exsltfuncresultcompfunction of libxslt	06-12-2025	3990
MSRC Security Update	CVE-2025-11230 Denial of service vulnerability in HAProxy mjson library	06-12-2025	3991
MSRC Security Update	CVE-2025-12817 PostgreSQL CREATE STATISTICS does not check for schema CREATE privilege	06-12-2025	3992
MSRC Security Update	CVE-2024-47866 RGW DoS attack with empty HTTP header in S3 object copy	06-12-2025	3993
MSRC Security Update	CVE-2025-64437 KubeVirt Isolation Detection Flaw Allows Arbitrary File Permission Changes	06-12-2025	3994
MSRC Security Update	CVE-2025-64436 KubeVirt Excessive Role Permissions Could Enable Unauthorized VMI Migrations Between Nodes	06-12-2025	3995
MSRC Security Update	CVE-2025-64435 KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation	06-12-2025	3996
MSRC Security Update	CVE-2025-64434 KubeVirt Improper TLS Certificate Management Handling Allows API Identity Spoofing	06-12-2025	3997
MSRC Security Update	CVE-2025-64433 KubeVirt Arbitrary Container File Read	06-12-2025	3998
MSRC Security Update	CVE-2025-64432 KubeVirt Affected by an Authentication Bypass in Kubernetes Aggregation Layer	06-12-2025	3999
MSRC Security Update	CVE-2025-10966 missing SFTP host verification with wolfSSH	06-12-2025	4000