CVE-2025-68114 Capstone doesn't check vsnprintf return in SStream_concat, allows stack buffer underflow and overflow
Published December 22, 2025
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2025-68161 Apache Log4j Core: Missing TLS hostname verification in Socket appender
Published December 22, 2025
Information published.
CVE-2025-59529 simple protocol server ignores accepts unlimited connections and logs failures without limit
Published December 22, 2025
Information published.
CVE-2025-68390 Elasticsearch Allocation of Resources Without Limits or Throttling
Published December 22, 2025
Information published.
CVE-2025-68384 Elasticsearch Allocation of Resources Without Limits or Throttling
Published December 22, 2025
Information published.
CVE-2025-38347 f2fs: fix to do sanity check on ino and xnid
Published December 22, 2025
Information published.
CVE-2025-38331 net: ethernet: cortina: Use TOE/TSO on all TCP
Published December 22, 2025
Information published.
CVE-2025-38300 crypto: sun8i-ce-cipher – fix error handling in sun8i_ce_cipher_prepare()
Published December 22, 2025
Information published.
CVE-2025-37938 tracing: Verify event formats that have "%*p.."
Published December 22, 2025
Information published.
CVE-2025-44904 hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5VM_memcpyvv function.
Published December 20, 2025
Information published.
