CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2025-21871 – tee: optee: Fix supplicant wait loop
https://notcve.org/view.php?id=CVE-2025-21871
27 Mar 2025 — Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. • https://git.kernel.org/stable/c/4fb0a5eb364d239722e745c02aef0dbd4e0f1ad2 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2025-21867 – bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type()
https://notcve.org/view.php?id=CVE-2025-21867
27 Mar 2025 — [1] BUG: KMSAN: use-after-free in eth_skb_pkt_type include/linux/etherdevice.h:627 [inline] BUG: KMSAN: use-after-free in eth_type_trans+0x4ee/0x980 net/ethernet/eth.c:165 eth_skb_pkt_type include/linux/etherdevice.h:627 [inline] eth_type_trans+0x4ee/0x980 net/ethernet/eth.c:165 __xdp_build_skb_from_frame+0x5a8/0xa50 net/core/xdp.c:635 xdp_recv_frames net/bpf/test_run.c:272 [inline] xdp_test_run_batch net/bpf/test_run.c:361 [inline] bpf_test_run_xdp_live+0x2954/0x3330 net/bpf/test_run.c:390 bpf_prog_test_ru... • https://git.kernel.org/stable/c/be3d72a2896cb24090f268dce4aa8a304d40bc23 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2025-30355 – Synapse vulnerable to federation denial of service via malformed events
https://notcve.org/view.php?id=CVE-2025-30355
27 Mar 2025 — Synapse is an open source Matrix homeserver implementation. A malicious server can craft events which, when received, prevent Synapse version up to 1.127.0 from federating with other servers. The vulnerability has been exploited in the wild and has been fixed in Synapse v1.127.1. No known workarounds are available. • https://github.com/ui-bootstrap/CVE-2025-30355 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29484
https://notcve.org/view.php?id=CVE-2025-29484
27 Mar 2025 — An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. • https://github.com/libming/libming/issues/330 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29485
https://notcve.org/view.php?id=CVE-2025-29485
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz4.readme • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29487
https://notcve.org/view.php?id=CVE-2025-29487
27 Mar 2025 — An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz6.readme • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29490
https://notcve.org/view.php?id=CVE-2025-29490
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz8.readme • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29491
https://notcve.org/view.php?id=CVE-2025-29491
27 Mar 2025 — An allocation-size-too-big error in the parseSWF_DEFINEBINARYDATA function of libming v0.48 allows attackers to cause a Denial of Service (DoS) via supplying a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz10.readme • CWE-789: Memory Allocation with Excessive Size Value •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29493
https://notcve.org/view.php?id=CVE-2025-29493
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz11.readme • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29494
https://notcve.org/view.php?id=CVE-2025-29494
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz12.readme • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •