In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

tar-fs has issue where extract can write outside the specified dir with a specific tarball

GitHub: CVE-2025-48386 Git Credential Helper Vulnerability

GitHub: CVE-2025-48385 Git Protocol Injection Vulnerability

GitHub: CVE-2025-48384 Git Symlink Vulnerability

Redis DoS Vulnerability due to bad connection error handling

AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

SSH_FXP_OPENDIR may Lead to Exhaustion of File Handles

Malicious Key Exchange Messages may Lead to Excessive Resource Consumption

Unverified Paths can Cause Excessive Use of System Resources

Unverified File Handles can Cause Excessive Use of System Resources

Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid binaries that call dlopen (including internal dlopen calls after setlocale or calls to NSS functions such as getaddrinfo).

Microsoft Brokering File System Elevation of Privilege Vulnerability

Windows BitLocker Security Feature Bypass Vulnerability

Windows Hyper-V Information Disclosure Vulnerability

Windows BitLocker Security Feature Bypass Vulnerability

Windows Connected Devices Platform Service Elevation of Privilege Vulnerability

Windows Hyper-V Denial of Service Vulnerability

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Microsoft SQL Server Information Disclosure Vulnerability