Close Menu
    DevStackTipsDevStackTips
    • Home
    • News & Updates
      1. Tech & Work
      2. View All

      Agent Mode for Gemini added to Android Studio

      June 24, 2025

      Google’s Agent2Agent protocol finds new home at the Linux Foundation

      June 23, 2025

      Decoding The SVG path Element: Curve And Arc Commands

      June 23, 2025

      This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

      June 20, 2025

      Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

      June 24, 2025

      Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

      June 24, 2025

      “Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

      June 24, 2025

      Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

      June 24, 2025
    • Development
      1. Algorithms & Data Structures
      2. Artificial Intelligence
      3. Back-End Development
      4. Databases
      5. Front-End Development
      6. Libraries & Frameworks
      7. Machine Learning
      8. Security
      9. Software Engineering
      10. Tools & IDEs
      11. Web Design
      12. Web Development
      13. Web Security
      14. Programming Languages
        • PHP
        • JavaScript
      Featured

      Vite 7.0 Is Out

      June 24, 2025
      Recent

      Vite 7.0 Is Out

      June 24, 2025

      Exploring JavaScript ES2025 Edition

      June 24, 2025

      Mastering Mixed DML Operations in Apex

      June 24, 2025
    • Operating Systems
      1. Windows
      2. Linux
      3. macOS
      Featured

      Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

      June 24, 2025
      Recent

      Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

      June 24, 2025

      Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

      June 24, 2025

      “Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

      June 24, 2025
    • Learning Resources
      • Books
      • Cheatsheets
      • Tutorials & Guides
    Home»Security»Common Vulnerabilities and Exposures (CVEs)»CVE-2025-37887 – Linux Kernel PDS_CORE Devlink Command Buffer Overflow

    CVE-2025-37887 – Linux Kernel PDS_CORE Devlink Command Buffer Overflow

    May 9, 2025

    CVE ID : CVE-2025-37887

    Published : May 9, 2025, 7:16 a.m. | 4 hours, 51 minutes ago

    Description : In the Linux kernel, the following vulnerability has been resolved:

    pds_core: handle unsupported PDS_CORE_CMD_FW_CONTROL result

    If the FW doesn’t support the PDS_CORE_CMD_FW_CONTROL command
    the driver might at the least print garbage and at the worst
    crash when the user runs the “devlink dev info” devlink command.

    This happens because the stack variable fw_list is not 0
    initialized which results in fw_list.num_fw_slots being a
    garbage value from the stack. Then the driver tries to access
    fw_list.fw_names[i] with i >= ARRAY_SIZE and runs off the end
    of the array.

    Fix this by initializing the fw_list and by not failing
    completely if the devcmd fails because other useful information
    is printed via devlink dev info even if the devcmd fails.

    Severity: 0.0 | NA

    Visit the link for more details, such as CVSS details, affected products, timeline, and more…

    Source: Read More

    Facebook Twitter Reddit Email Copy Link
    Previous ArticleCVE-2025-37888 – Intel Mellanox Linux Null Pointer Dereference Vulnerability
    Next Article CVE-2025-4467 – SourceCodester Online Student Clearance System SQL Injection Vulnerability

    Related Posts

    Security

    Rogue WordPress Plugin Unmasked: Stealthy Malware Skims Credit Cards & Steals Credentials

    June 24, 2025
    Security

    Urgent Advantech Alert: Critical Flaws (CVSS 9.6) Expose Industrial Automation to Remote Takeover, PoC Releases

    June 24, 2025
    Leave A Reply Cancel Reply

    For security, use of Google's reCAPTCHA service is required which is subject to the Google Privacy Policy and Terms of Use.

    Continue Reading

    KiCad Consiglia agli Utenti GNU/Linux di Rimanere su X11 per la Progettazione Professionale di Circuiti Stampati

    Linux

    OneDrive and SharePoint users can now connect their files to ChatGPT’s Deep Research

    Operating Systems

    VacuumTube is an unofficial wrapper of YouTube Leanback

    Linux

    CVE-2025-30391 – Microsoft Dynamics Information Disclosure Vulnerability

    Common Vulnerabilities and Exposures (CVEs)

    Highlights

    Google quietly pushes emergency fix for Chrome 0-day as exploit runs wild

    June 3, 2025

    Google quietly pushes emergency fix for Chrome 0-day as exploit runs wild

    Google revealed Monday that it had quietly deployed a configuration change last week to block active exploitation of a Chrome zero-day.
    Google Threat Analysis Group (TAG) team members Clement Lecigne …
    Read more

    Published Date:
    Jun 03, 2025 (4 hours, 13 minutes ago)

    Vulnerabilities has been mentioned in this article.

    CVE-2025-5419

    CVE-2025-5068

    CVE-2025-4664

    CVE-2025-2783

    My 6 favorite open-source Android apps from the Google Play store – and why that matters

    June 18, 2025

    CVE-2024-48766 – NetAlertX HTTP File Disclosure

    May 13, 2025
    RoR-Bench: Revealing Recitation Over Reasoning in Large Language Models Through Subtle Context Shifts

    RoR-Bench: Revealing Recitation Over Reasoning in Large Language Models Through Subtle Context Shifts

    April 11, 2025
    © DevStackTips 2025. All rights reserved.
    • Contact
    • Privacy Policy

    Type above and press Enter to search. Press Esc to cancel.