CVE-2025-37888 – Intel Mellanox Linux Null Pointer Dereference Vulnerability

May 9, 2025

CVE ID : CVE-2025-37888

Published : May 9, 2025, 7:16 a.m. | 4 hours, 51 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

net/mlx5: Fix null-ptr-deref in mlx5_create_{inner_,}ttc_table()

Add NULL check for mlx5_get_flow_namespace() returns in
mlx5_create_inner_ttc_table() and mlx5_create_ttc_table() to prevent
NULL pointer dereference.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4468 – SourceCodester Online Student Clearance System File Upload Vulnerability

Next Article CVE-2025-37887 – Linux Kernel PDS_CORE Devlink Command Buffer Overflow

Highlights

CVE-2025-46827 – Graylog HTML Form Cookie Disclosure

May 7, 2025

CVE ID : CVE-2025-46827

Published : May 7, 2025, 4:15 p.m. | 3 hours, 29 minutes ago

Description : Graylog is a free and open log management platform. Prior to versions 6.0.14, 6.1.10, and 6.2.0, it is possible to obtain user session cookies by submitting an HTML form as part of an Event Definition Remediation Step field. For this attack to succeed, the attacker needs a user account with permissions to create event definitions, while the user must have permissions to view alerts. Additionally, an active Input must be present on the Graylog server that is capable of receiving form data (e.g. a HTTP input, TCP raw or syslog etc). Versions 6.0.14, 6.1.10, and 6.2.0 fix the issue. No known workarounds are available, as long as the relatively rare prerequisites are met.

Severity: 8.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Is The Alters on Game Pass?

May 21, 2025

With Windows 10’s fast-approaching demise, this Linux migration tool could let you ditch Microsoft’s ecosystem with your data and apps intact — but it’s limited to one distro

July 29, 2025

Citrix waarschuwt voor misbruik van kritiek lek in NetScaler ADC en Gateway

June 26, 2025

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

HoundDog.ai Launches Industry’s First Privacy-by-Design Code Scanner for AI Applications

The Double-Edged Sustainability Sword Of AI In Web Design

How VPNs are helping people evade increased censorship – and much more

Google’s AI Mode can now find restaurant reservations for you – how it works

Best early Labor Day TV deals 2025: Save up to 50% on Samsung, LG, and more

Claude wins high praise from a Supreme Court justice – is AI’s legal losing streak over?

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Quickly Generate Forms based on your Eloquent Models with Laravel Formello

Pest 4 is Released

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

You’ll need standalone Word, PowerPoint, Excel on iOS, as Microsoft 365 app becomes a Copilot wrapper

Microsoft to Move Copilot Previews to iOS While Editing Returns to Office Apps

CVE-2025-37888 – Intel Mellanox Linux Null Pointer Dereference Vulnerability

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

How to install OpenReports — IoT platform

CVE-2025-36014 – IBM Integration Bus for z/OS Code Injection Vulnerability

CVE-2025-3358 – CVE-2022-36337 Oracle WebLogic Server Cross-Site Scripting

CVE-2025-20961 – Sepunion Service Privilege Escalation Vulnerability

CVE-2025-46827 – Graylog HTML Form Cookie Disclosure

Is The Alters on Game Pass?

With Windows 10’s fast-approaching demise, this Linux migration tool could let you ditch Microsoft’s ecosystem with your data and apps intact — but it’s limited to one distro

Citrix waarschuwt voor misbruik van kritiek lek in NetScaler ADC en Gateway

CVE-2025-37888 – Intel Mellanox Linux Null Pointer Dereference Vulnerability

Related Posts