Aggregator

CVE-2025-38289 | Linux Kernel prior 6.15.3/6.16-rc1 scsi dev_loss_tmo_callbk use after free (Nessus ID 243301 / WID-SEC-2025-1522)

Vuldb Updates
5 days 2 hours ago
A vulnerability was found in Linux Kernel up to 6.15.2/e4913d4bc59227fbdfe6b8f5541f49aaea1cb41c and classified as critical. Impacted is the function dev_loss_tmo_callbk of the component scsi. Such manipulation leads to use after free. This vulnerability is traded as CVE-2025-38289. Access to the local network is required for this attack to succeed. There is no exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-38288 | Linux Kernel up to 6.12.33/6.15.2 scsi smp_processor_id privilege escalation (Nessus ID 265934 / WID-SEC-2025-1522)

Vuldb Updates
5 days 2 hours ago
A vulnerability has been found in Linux Kernel up to 6.12.33/6.15.2 and classified as problematic. This issue affects the function smp_processor_id of the component scsi. This manipulation causes privilege escalation. This vulnerability appears as CVE-2025-38288. The attacker needs to be present on the local network. There is no available exploit. The affected component should be upgraded.
vuldb.com

CVE-2025-38287 | Linux Kernel up to 6.15.2 cm_free_priv_msg assertion (Nessus ID 246953 / WID-SEC-2025-1522)

Vuldb Updates
5 days 2 hours ago
A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.15.2. This vulnerability affects the function cm_free_priv_msg. The manipulation results in reachable assertion. This vulnerability is reported as CVE-2025-38287. The attacker must have access to the local network to execute the attack. No exploit exists. You should upgrade the affected component.
vuldb.com

Cybersecurity News Weekly Newsletter – EY Data Leak, Bind 9, Chrome Vulnerability, and Aardvar ChatGPT Agent

Cyber Security News
5 days 2 hours ago

This week’s cybersecurity roundup highlights escalating threats from misconfigurations, software flaws, and advanced malware. Key incidents demand immediate attention from IT teams and executives. ISC patched CVE-2025-5470 in BIND 9 (versions 9.16.0–9.18.26), a DoS vulnerability (CVSS 8.6) allowing server crashes through malformed DNS queries. It risks amplification attacks on global infrastructure—update DNS servers urgently. Google […]

The post Cybersecurity News Weekly Newsletter – EY Data Leak, Bind 9, Chrome Vulnerability, and Aardvar ChatGPT Agent appeared first on Cyber Security News.

Guru Baran

NDSS 2025 – BULKHEAD: Secure, Scalable, And Efficient Kernel Compartmentalization With PKS

Security Boulevard
5 days 2 hours ago

SESSION Session 1D: System-Level Security

Authors, Creators & Presenters: Yinggang Guo (State Key Laboratory for Novel Software Technology, Nanjing University; University of Minnesota), Zicheng Wang (State Key Laboratory for Novel Software Technology, Nanjing University), Weiheng Bai (University of Minnesota), Qingkai Zeng (State Key Laboratory for Novel Software Technology, Nanjing University), Kangjie Lu (University of Minnesota)

PAPER
BULKHEAD: Secure, Scalable, And Efficient Kernel Compartmentalization With PKS
The endless stream of vulnerabilities urgently calls for principled mitigation to confine the effect of exploitation. However, the monolithic architecture of commodity OS kernels, like the Linux kernel, allows an attacker to compromise the entire system by exploiting a vulnerability in any kernel component. Kernel compartmentalization is a promising approach that follows the least-privilege principle. However, existing mechanisms struggle with the trade-off on security, scalability, and performance, given the challenges stemming from mutual untrustworthiness among numerous and complex components. In this paper, we present BULKHEAD, a secure, scalable, and efficient kernel compartmentalization technique that offers bi-directional isolation for unlimited compartments. It leverages Intel's new hardware feature PKS to isolate data and code into mutually untrusted compartments and benefits from its fast compartment switching. With untrust in mind, BULKHEAD introduces a lightweight in-kernel monitor that enforces multiple important security invariants, including data integrity, execute-only memory, and compartment interface integrity. In addition, it provides a locality-aware two-level scheme that scales to unlimited compartments. We implement a prototype system on Linux v6.1 to compartmentalize loadable kernel modules (LKMs). Extensive evaluation confirms the effectiveness of our approach. As the system-wide impacts, BULKHEAD incurs an average performance overhead of 2.44% for real-world applications with 160 compartmentalized LKMs. While focusing on a specific compartment, ApacheBench tests on ipv6 show an overhead of less than 2%. Moreover, the performance is almost unaffected by the number of compartments, which makes it highly scalable.

Our thanks to the Network and Distributed System Security (NDSS) Symposium for publishing their Creators, Authors and Presenter’s superb NDSS Symposium 2025 Conference content on the organization’s’ YouTube channel.

Permalink

The post NDSS 2025 – BULKHEAD: Secure, Scalable, And Efficient Kernel Compartmentalization With PKS appeared first on Security Boulevard.

Marc Handelman

CVE-2023-25868 | Adobe Substance 3D Stager up to 2.0.0 heap-based overflow (apsb23-22 / EUVD-2023-29756)

Vuldb Updates
5 days 3 hours ago
A vulnerability labeled as critical has been found in Adobe Substance 3D Stager up to 2.0.0. Affected by this vulnerability is an unknown functionality. The manipulation results in heap-based buffer overflow. This vulnerability is identified as CVE-2023-25868. The attack can be executed remotely. There is not any exploit available. The affected component should be upgraded.
vuldb.com

CVE-2023-25870 | Adobe Substance 3D Stager up to 2.0.0 out-of-bounds write (apsb23-22 / EUVD-2023-29758)

Vuldb Updates
5 days 3 hours ago
A vulnerability marked as critical has been reported in Adobe Substance 3D Stager up to 2.0.0. Affected by this issue is some unknown functionality. This manipulation causes out-of-bounds write. This vulnerability is tracked as CVE-2023-25870. The attack is possible to be carried out remotely. No exploit exists. It is suggested to upgrade the affected component.
vuldb.com

CVE-2023-25869 | Adobe Substance 3D Stager up to 2.0.0 File out-of-bounds (apsb23-22 / EUVD-2023-29757)

Vuldb Updates
5 days 3 hours ago
A vulnerability has been found in Adobe Substance 3D Stager up to 2.0.0 and classified as problematic. The impacted element is an unknown function of the component File Handler. This manipulation causes out-of-bounds read. This vulnerability appears as CVE-2023-25869. The attack may be initiated remotely. There is no available exploit. The affected component should be upgraded.
vuldb.com

CVE-2023-25864 | Adobe Substance 3D Stager up to 2.0.0 heap-based overflow (apsb23-22 / EUVD-2023-29752)

Vuldb Updates
5 days 3 hours ago
A vulnerability was found in Adobe Substance 3D Stager up to 2.0.0. It has been declared as critical. The impacted element is an unknown function. Such manipulation leads to heap-based buffer overflow. This vulnerability is uniquely identified as CVE-2023-25864. The attack can be launched remotely. No exploit exists. It is recommended to upgrade the affected component.
vuldb.com

CVE-2023-25866 | Adobe Substance 3D Stager up to 2.0.0 out-of-bounds write (apsb23-22 / EUVD-2023-29754)

Vuldb Updates
5 days 3 hours ago
A vulnerability categorized as critical has been discovered in Adobe Substance 3D Stager up to 2.0.0. This impacts an unknown function. Executing manipulation can lead to out-of-bounds write. The identification of this vulnerability is CVE-2023-25866. The attack may be launched remotely. There is no exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-38286 | Linux Kernel up to 6.15.2 pinctrl at91_gpio_probe out-of-bounds (Nessus ID 264318 / WID-SEC-2025-1522)

Vuldb Updates
5 days 3 hours ago
A vulnerability classified as problematic was found in Linux Kernel up to 6.15.2. Affected by this issue is the function at91_gpio_probe of the component pinctrl. Executing manipulation can lead to out-of-bounds read. This vulnerability is registered as CVE-2025-38286. The attack requires access to the local network. No exploit is available. Upgrading the affected component is advised.
vuldb.com

CVE-2025-38285 | Linux Kernel up to 6.15.2 bpf kernel/trace/bpf_trace.c stack-based overflow (Nessus ID 243500 / WID-SEC-2025-1522)

Vuldb Updates
5 days 3 hours ago
A vulnerability described as critical has been identified in Linux Kernel up to 6.15.2. The impacted element is an unknown function of the file kernel/trace/bpf_trace.c of the component bpf. The manipulation results in stack-based buffer overflow. This vulnerability is cataloged as CVE-2025-38285. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-38284 | Linux Kernel up to 6.15.2 DBI Interface error_code memory corruption (Nessus ID 265934 / WID-SEC-2025-1522)

Vuldb Updates
5 days 3 hours ago
A vulnerability labeled as critical has been found in Linux Kernel up to 6.15.2. This vulnerability affects the function error_code of the component DBI Interface. Executing manipulation can lead to memory corruption. The identification of this vulnerability is CVE-2025-38284. The attack needs to be done within the local network. There is no exploit available. The affected component should be upgraded.
vuldb.com

Managed ad