Microsoft Edge now lets IT quietly share secure passwords with employees

Microsoft is giving IT departments a better way to handle shared logins with a new Edge for Business feature, which is now generally available. According to the company, secure password deployment lets admins push encrypted, autofill-ready credentials directly to users—cutting down on risky workarounds like emails or sticky notes. These passwords live in the Edge […]

Source: Read MoreÂ

CVE-2025-37779 – “ERofs Linux Kernel Folio UAF Vulnerability”

May 1, 2025

CVE ID : CVE-2025-37779

Published : May 1, 2025, 2:15 p.m. | 1 hour, 10 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

lib/iov_iter: fix to increase non slab folio refcount

When testing EROFS file-backed mount over v9fs on qemu, I encountered a
folio UAF issue. The page sanity check reports the following call trace.
The root cause is that pages in bvec are coalesced across a folio bounary.
The refcount of all non-slab folios should be increased to ensure
p9_releas_pages can put them correctly.

BUG: Bad page state in process md5sum pfn:18300
page: refcount:0 mapcount:0 mapping:00000000d5ad8e4e index:0x60 pfn:0x18300
head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
aops:z_erofs_aops ino:30b0f dentry name(?):”GoogleExtServicesCn.apk”
flags: 0x100000000000041(locked|head|node=0|zone=1)
raw: 0100000000000041 dead000000000100 dead000000000122 ffff888014b13bd0
raw: 0000000000000060 0000000000000020 00000000ffffffff 0000000000000000
head: 0100000000000041 dead000000000100 dead000000000122 ffff888014b13bd0
head: 0000000000000060 0000000000000020 00000000ffffffff 0000000000000000
head: 0100000000000000 0000000000000000 ffffffffffffffff 0000000000000000
head: 0000000000000010 0000000000000000 00000000ffffffff 0000000000000000
page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
Call Trace:
dump_stack_lvl+0x53/0x70
bad_page+0xd4/0x220
__free_pages_ok+0x76d/0xf30
__folio_put+0x230/0x320
p9_release_pages+0x179/0x1f0
p9_virtio_zc_request+0xa2a/0x1230
p9_client_zc_rpc.constprop.0+0x247/0x700
p9_client_read_once+0x34d/0x810
p9_client_read+0xf3/0x150
v9fs_issue_read+0x111/0x360
netfs_unbuffered_read_iter_locked+0x927/0x1390
netfs_unbuffered_read_iter+0xa2/0xe0
vfs_iocb_iter_read+0x2c7/0x460
erofs_fileio_rq_submit+0x46b/0x5b0
z_erofs_runqueue+0x1203/0x21e0
z_erofs_readahead+0x579/0x8b0
read_pages+0x19f/0xa70
page_cache_ra_order+0x4ad/0xb80
filemap_readahead.isra.0+0xe7/0x150
filemap_get_pages+0x7aa/0x1890
filemap_read+0x320/0xc80
vfs_read+0x6c6/0xa30
ksys_read+0xf9/0x1c0
do_syscall_64+0x9e/0x1a0
entry_SYSCALL_64_after_hwframe+0x71/0x79

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

8 Key Questions Every CEO Should Ask Before Hiring a Node.js Development Company in 2025

Vibe Loop: AI-native reliability engineering for the real world

Docker Compose gets new features for building and running agents

Why Enterprises Are Choosing AI-Driven React.js Development Companies in 2025

I used every Samsung Galaxy Watch 8 Series model – and my favorite isn’t the Ultra

My favorite red light wand is 50% off for the first time in over a year – but hurry

My first 24 hours with the Galaxy Z Fold 7 left me completely mesmerized

Your Garmin watch just got a major upgrade that makes traveling so much easier

Regolith – A JavaScript library immune to ReDoS attacks

Regolith – A JavaScript library immune to ReDoS attacks

Create Your Own Redux: Build a Custom State Management in React

Perficient Nagpur Celebrates Contentstack Implementation Certification Success!

How to Win Bing Quiz: Easy Steps to Always Get It Right

How to Win Bing Quiz: Easy Steps to Always Get It Right

How to Open and Use DirectX Diagnostic Tool (dxdiag) in Windows 11

How to Use Xbox Game Bar in Windows 11 (Full Guide for Beginners)

Microsoft Edge now lets IT quietly share secure passwords with employees

How to Win Bing Quiz: Easy Steps to Always Get It Right

How to Use Xbox Game Bar in Windows 11 (Full Guide for Beginners)

CVE-2025-5667 – FreeFloat FTP Server REIN Command Handler Buffer Overflow Vulnerability

Welcome to Maintainer Month: Events, exclusive discounts, and a new security challenge

The Game-Changing Role of App Modernization in the Finance Industry

Katy Perry Didn’t Attend the Met Gala, But AI Made Her the Star of the Night

CVE-2025-37779 – “ERofs Linux Kernel Folio UAF Vulnerability”

This free Windows tool recreates Circle to Search on Windows and Linux

The ethics of advanced AI assistants

CVE-2025-4756 – D-Link DI-7003GV2 Denial of Service Vulnerability in restart.asp

Microsoft Edge now lets IT quietly share secure passwords with employees

Related Posts