CVE-2025-34468 libcoap Stack-Based Buffer Overflow in Address Resolution DoS or Potential RCE
Published January 8, 2026
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2025-68972 In GnuPG through 2.4.8, if a signed message has f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of f as a marker to denote truncation of a long plaintext line.
Published January 8, 2026
Information published.
CVE-2025-68367 macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse
Published January 8, 2026
Information published.
CVE-2025-68729 wifi: ath12k: Fix MSDU buffer types handling in RX error path
Published January 8, 2026
Information published.
CVE-2025-38425 i2c: tegra: check msg length in SMBUS block read
Published January 8, 2026
Information published.
CVE-2025-38437 ksmbd: fix potential use-after-free in oplock/lease break ack
Published January 8, 2026
Information published.
CVE-2025-38259 ASoC: codecs: wcd9335: Fix missing free of regulator supplies
Published January 8, 2026
Information published.
CVE-2025-38257 s390/pkey: Prevent overflow in size calculation for memdup_user()
Published January 8, 2026
Information published.
CVE-2025-38230 jfs: validate AG parameters in dbMount() to prevent crashes
Published January 8, 2026
Information published.
CVE-2025-68287 usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths
Published January 8, 2026
Information published.
