CVE-2025-27038 – Google Chrome Adreno GPU Driver Buffer Overflow

June 3, 2025

CVE ID : CVE-2025-27038

Published : June 3, 2025, 6:15 a.m. | 1 hour, 12 minutes ago

Description : Memory corruption while rendering graphics using Adreno GPU drivers in Chrome.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-31711 – Apache CPLog Null Pointer Dereference Denial of Service

Next Article CVE-2025-31710 – Cisco Engineermode Command Injection Vulnerability

Highlights

CVE-2025-24015 – Deno AES-GCM Authentication Tag Validation Bypass

June 3, 2025

CVE ID : CVE-2025-24015

Published : June 3, 2025, 11:15 p.m. | 3 hours, 8 minutes ago

Description : Deno is a JavaScript, TypeScript, and WebAssembly runtime with secure defaults. Versions 1.46.0 through 2.1.6 have an issue that affects AES-256-GCM and AES-128-GCM in Deno in which the authentication tag is not being validated. This means tampered ciphertexts or incorrect keys might not be detected, which breaks the guarantees expected from AES-GCM. Older versions of Deno correctly threw errors in such cases, as does Node.js. Without authentication tag verification, AES-GCM degrades to essentially CTR mode, removing integrity protection. Authenticated data set with set_aad is also affected, as it is incorporated into the GCM hash (ghash) but this too is not validated, rendering AAD checks ineffective. Version 2.1.7 includes a patch that addresses this issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

ChatGPT now has an agent mode

Scrum Alliance and Kanban University partner to offer new course that teaches both methodologies

Is ChatGPT down? You’re not alone. Here’s what OpenAI is saying

I found a tablet that could replace my iPad and Kindle – and it’s worth every penny

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

Execute Ping Commands and Get Back Structured Data in PHP

Execute Ping Commands and Get Back Structured Data in PHP

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

Microsoft confirms active cyberattacks on SharePoint servers

How to Manually Check & Install Windows 11 Updates (Best Guide)

CVE-2025-27038 – Google Chrome Adreno GPU Driver Buffer Overflow

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics

CVE-2025-46734 – League Commonmark Attributes Extension Cross-Site Scripting Vulnerability

CVE-2025-4611 – WordPress Slim SEO Plugin Stored Cross-Site Scripting Vulnerability

CVE-2025-3820 – Tenda W12 and i24 Remote Stack-Based Buffer Overflow

Microsoft finally explains how to fix Office 2024 licensing issue

CVE-2025-24015 – Deno AES-GCM Authentication Tag Validation Bypass

Insomnia API Client Vulnerability Arbitrary Code Execution via Template Injection

CVE-2025-29094 – Motivian Content Management System Cross-Site Scripting Vulnerability

j-Importer – Total.js

CVE-2025-27038 – Google Chrome Adreno GPU Driver Buffer Overflow

Related Posts