CVE-2022-49610 KVM: VMX: Prevent RSB underflow before vmenter
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49610
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49610
CVE-2022-49562 KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49562
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49562
CVE-2022-49552 bpf: Fix combination of jit blinding and pointers to bpf subprogs.
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49552
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49552
CVE-2022-49543 ath11k: fix the warning of dev_wake in mhi_pm_disable_transition()
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49543
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49543
CVE-2022-49469 btrfs: fix anon_dev leak in create_subvol()
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49469
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49469
CVE-2022-49173 spi: fsi: Implement a timeout for polling status
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49173
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-49173
CVE-2025-62813 LZ4 through 1.10.0 allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact when the application processes untrusted LZ4 frames. For example, LZ4F_createCDict_advanced in lib/lz4frame.c mishandles NULL checks.
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62813
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62813
CVE-2025-11411 Possible domain hijacking via promiscuous records in the authority section
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-11411
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-11411
CVE-2025-11840 GNU Binutils ldmisc.c vfinfo out-of-bounds
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-11840
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-11840
CVE-2025-40049 Squashfs: fix uninit-value in squashfs_get_parent
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40049
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40049
CVE-2025-40081 perf: arm_spe: Prevent overflow in PERF_IDX2OFF()
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40081
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40081
CVE-2025-40048 uio_hv_generic: Let userspace take care of interrupt mask
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40048
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40048
CVE-2025-40036 misc: fastrpc: fix possible map leak in fastrpc_put_args
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40036
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40036
CVE-2025-40039 ksmbd: Fix race condition in RPC handle list access
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40039
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40039
CVE-2025-40043 net: nfc: nci: Add parameter validation for packet data
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40043
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40043
CVE-2025-40074 ipv4: start using dst_dev_rcu()
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40074
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40074
CVE-2025-40033 remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable()
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40033
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40033
CVE-2025-40032 PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40032
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40032
CVE-2025-40080 nbd: restrict sockets to TCP and UDP
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40080
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40080
CVE-2025-40060 coresight: trbe: Return NULL pointer for allocation failures
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40060
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40060
CVE-2025-40026 KVM: x86: Don't (re)check L1 intercepts when completing userspace I/O
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40026
Information published.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40026