CVE-2025-31246 – Apple macOS AFP Server Kernel Memory Corruption Vulnerability

May 12, 2025

CVE ID : CVE-2025-31246

Published : May 12, 2025, 10:15 p.m. | 1 hour, 28 minutes ago

Description : The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.5, macOS Sonoma 14.7.6. Connecting to a malicious AFP server may corrupt kernel memory.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-31242 – Apple iPadOS and macOS Private Data Exposure Vulnerability

Next Article CVE-2025-31235 – “Apple iPadOS and macOS Double Free Vulnerability”

Highlights

CVE-2022-50222 – Linux Kernel TTY Unicode Screen Buffer Info Leak

June 18, 2025

CVE ID : CVE-2022-50222

Published : June 18, 2025, 11:15 a.m. | 3 hours, 16 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

tty: vt: initialize unicode screen buffer

syzbot reports kernel infoleak at vcs_read() [1], for buffer can be read
immediately after resize operation. Initialize buffer using kzalloc().

———-
#include
#include
#include
#include

int main(int argc, char *argv[])
{
struct fb_var_screeninfo var = { };
const int fb_fd = open(“/dev/fb0”, 3);
ioctl(fb_fd, FBIOGET_VSCREENINFO, &var);
var.yres = 0x21;
ioctl(fb_fd, FBIOPUT_VSCREENINFO, &var);
return read(open(“/dev/vcsu”, O_RDONLY), &var, sizeof(var)) == -1;
}
———-

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

Forget YouTube’s ad blocker war — this Google AI Overviews clone might finally sell me on the $14/month Premium subscription

Say hello to ECMAScript 2025

Say hello to ECMAScript 2025

Ecma International approves ECMAScript 2025: What’s new?

Building Together: PRFT Colleagues Volunteer with Atlanta Habitat for Humanity

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

CVE-2025-31246 – Apple macOS AFP Server Kernel Memory Corruption Vulnerability

CVE-2025-32897 – Apache Seata (incubating) Untrusted Data Deserialization Vulnerability

CVE-2025-6822 – Code-projects Inventory Management System SQL Injection Vulnerability

Even the Meta Quest can be an Xbox — Leaked images show an Xbox-branded Quest 3S that could shadow drop in just a few days

Shokz joins in on the clip-on earbud craze, releasing its most advanced (and expensive) earbuds yet

Xbox players will have to wait longer to play Hades 2, it’s coming to Nintendo Switch 2 first

‘Final Fantasy Tactics’ highlights the lack of organic growth for Xbox Play Anywhere and the Xbox PC store

CVE-2022-50222 – Linux Kernel TTY Unicode Screen Buffer Info Leak

CVE-2025-37779 – “ERofs Linux Kernel Folio UAF Vulnerability”

AlphaProteo generates novel proteins for biology and health research

CVE-2024-7096 – WSO2 SOAP Admin Privilege Escalation Vulnerability

CVE-2025-31246 – Apple macOS AFP Server Kernel Memory Corruption Vulnerability

Related Posts