CVE-2025-68146 filelock has TOCTOU race condition that allows symlink attacks during lock file creation
Published January 3, 2026
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2025-52881 runc: LSM labels can be bypassed with malicious config using dummy procfs files
Published January 3, 2026
Information published.
CVE-2025-61099 FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaque_info_detail function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LS Update packet.
Published January 3, 2026
Information published.
CVE-2025-61104 FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_unknown_tlv function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Published January 3, 2026
Information published.
CVE-2025-58436 OpenPrinting CUPS slow client can halt cupsd, leading to a possible DoS attack
Published January 1, 2026
Information published.
CVE-2025-2915 HDF5 H5Faccum.c H5F__accum_free heap-based overflow
Published January 1, 2026
Information published.
CVE-2025-2309 HDF5 Type Conversion Logic H5T__bit_copy heap-based overflow
Published January 1, 2026
Information published.
CVE-2025-2308 HDF5 Scale-Offset Filter H5Z__scaleoffset_decompress_one_byte heap-based overflow
Published January 1, 2026
Information published.
CVE-2025-12084 Quadratic complexity in node ID cache clearing
Published December 31, 2025
Information published.
CVE-2025-13837 Out-of-memory when loading Plist
Published December 31, 2025
Information published.
