CVE-2025-2962 – Apache DNS DNS Denial-of-Service

June 24, 2025

CVE ID : CVE-2025-2962

Published : June 24, 2025, 6:15 a.m. | 3 hours, 21 minutes ago

Description : A denial-of-service issue in the dns implemenation could cause an infinite loop.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3090 – Cisco Device Authentication Bypass Vulnerability

Next Article CVE-2025-43879 – ZTE WRH-733GBK/WRH-733GWH OS Command Injection

Highlights

CVE-2025-38231 – Linux Kernel NFSd NULL Pointer Dereference Vulnerability

July 4, 2025

CVE ID : CVE-2025-38231

Published : July 4, 2025, 2:15 p.m. | 4 hours, 57 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

nfsd: Initialize ssc before laundromat_work to prevent NULL dereference

In nfs4_state_start_net(), laundromat_work may access nfsd_ssc through
nfs4_laundromat -> nfsd4_ssc_expire_umount. If nfsd_ssc isn’t initialized,
this can cause NULL pointer dereference.

Normally the delayed start of laundromat_work allows sufficient time for
nfsd_ssc initialization to complete. However, when the kernel waits too
long for userspace responses (e.g. in nfs4_state_start_net ->
nfsd4_end_grace -> nfsd4_record_grace_done -> nfsd4_cld_grace_done ->
cld_pipe_upcall -> __cld_pipe_upcall -> wait_for_completion path), the
delayed work may start before nfsd_ssc initialization finishes.

Fix this by moving nfsd_ssc initialization before starting laundromat_work.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Psychology Of Color In UX Design And Digital Products

This week in AI dev tools: Claude Sonnet 4’s larger context window, ChatGPT updates, and more (August 15, 2025)

Sentry launches MCP monitoring tool

10 Benefits of Hiring a React.js Development Company (2025–2026 Edition)

Google’s Gemini AI had a full-on meltdown while coding — calling itself a fool, a disgrace, and begging for freedom from its own loop

Take-Two hints at $100 price tag for Grand Theft Auto VI — will it deliver on value?

ChatGPT Go offers GPT-5, image creation, and longer memory — all for $5 (if you’re lucky enough to live where it’s available)

Overwatch 2’s new support hero Wuyang brings water-based healing and crowd control — here’s why he might be season 18’s meta breaker

Smart Failure Handling in HCL Commerce with Circuit Breakers

Smart Failure Handling in HCL Commerce with Circuit Breakers

How Global Collaboration Drives Digital Transformation at Perficient

How to install OpenReports — IoT platform

Google’s Gemini AI had a full-on meltdown while coding — calling itself a fool, a disgrace, and begging for freedom from its own loop

Google’s Gemini AI had a full-on meltdown while coding — calling itself a fool, a disgrace, and begging for freedom from its own loop

Take-Two hints at $100 price tag for Grand Theft Auto VI — will it deliver on value?

ChatGPT Go offers GPT-5, image creation, and longer memory — all for $5 (if you’re lucky enough to live where it’s available)

CVE-2025-2962 – Apache DNS DNS Denial-of-Service

Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution

Zero Trust + AI: Privacy in the Age of Agentic AI

Microsoft fixes Windows Server auth issues caused by April updates

CVE-2025-8928 – Code-projects Medical Store Management System SQL Injection Vulnerability

CVE-2025-48468 – “Juniper JTAG Firmware Injection Vulnerability”

CVE-2025-5685 – Tenda CH22 Stack-Based Buffer Overflow Vulnerability

CVE-2025-38231 – Linux Kernel NFSd NULL Pointer Dereference Vulnerability

Get faster and actionable AWS Trusted Advisor insights to make data-driven decisions using Amazon Q Business

CVE-2025-53904 – Scratch Channel Cross-Site Scripting Vulnerability

CVE-2025-4275 – Insyde BIOS UEFI Bootloader Execution

CVE-2025-2962 – Apache DNS DNS Denial-of-Service

Related Posts