Publish Advisories

advisory-database[bot] · advisory-database[bot] · commit e0ab663a6385 · 2025-11-12T03:32:19.000Z
GHSA-qc8j-wvjf-7jfj GHSA-h2g7-2683-wf59 GHSA-j2g7-c9g4-fffq GHSA-pvw2-x3cx-mv2h GHSA-q6fq-7r5f-c3mx
diff --git a/advisories/unreviewed/2025/09/GHSA-qc8j-wvjf-7jfj/GHSA-qc8j-wvjf-7jfj.json b/advisories/unreviewed/2025/09/GHSA-qc8j-wvjf-7jfj/GHSA-qc8j-wvjf-7jfj.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-qc8j-wvjf-7jfj",
-  "modified": "2025-11-11T21:30:27Z",
+  "modified": "2025-11-12T03:30:25Z",
   "published": "2025-09-23T18:30:24Z",
   "aliases": [
     "CVE-2025-9900"
@@ -47,6 +47,14 @@
       "type": "WEB",
       "url": "https://access.redhat.com/security/cve/CVE-2025-9900"
     },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2025:21062"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2025:21061"
+    },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/errata/RHSA-2025:20998"
diff --git a/advisories/unreviewed/2025/11/GHSA-h2g7-2683-wf59/GHSA-h2g7-2683-wf59.json b/advisories/unreviewed/2025/11/GHSA-h2g7-2683-wf59/GHSA-h2g7-2683-wf59.json
@@ -0,0 +1,41 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-h2g7-2683-wf59",
+  "modified": "2025-11-12T03:30:25Z",
+  "published": "2025-11-12T03:30:25Z",
+  "aliases": [
+    "CVE-2025-43205"
+  ],
+  "details": "An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in watchOS 11.4, tvOS 18.4, visionOS 2.4, iOS 18.4 and iPadOS 18.4. An app may be able to bypass ASLR.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43205"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/122371"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/122376"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/122377"
+    },
+    {
+      "type": "WEB",
+      "url": "https://support.apple.com/en-us/122378"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-12T01:15:34Z"
+  }
+}
diff --git a/advisories/unreviewed/2025/11/GHSA-j2g7-c9g4-fffq/GHSA-j2g7-c9g4-fffq.json b/advisories/unreviewed/2025/11/GHSA-j2g7-c9g4-fffq/GHSA-j2g7-c9g4-fffq.json
@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-j2g7-c9g4-fffq",
-  "modified": "2025-11-10T21:30:36Z",
+  "modified": "2025-11-12T03:30:25Z",
   "published": "2025-11-10T21:30:36Z",
   "aliases": [
     "CVE-2025-12447"
   ],
   "details": "Incorrect security UI in Omnibox in Google Chrome on Android prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -24,8 +29,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-306"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-11-10T20:15:39Z"
diff --git a/advisories/unreviewed/2025/11/GHSA-pvw2-x3cx-mv2h/GHSA-pvw2-x3cx-mv2h.json b/advisories/unreviewed/2025/11/GHSA-pvw2-x3cx-mv2h/GHSA-pvw2-x3cx-mv2h.json
@@ -0,0 +1,41 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-pvw2-x3cx-mv2h",
+  "modified": "2025-11-12T03:30:26Z",
+  "published": "2025-11-12T03:30:26Z",
+  "aliases": [
+    "CVE-2025-40110"
+  ],
+  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix a null-ptr access in the cursor snooper\n\nCheck that the resource which is converted to a surface exists before\ntrying to use the cursor snooper on it.\n\nvmw_cmd_res_check allows explicit invalid (SVGA3D_INVALID_ID) identifiers\nbecause some svga commands accept SVGA3D_INVALID_ID to mean \"no surface\",\nunfortunately functions that accept the actual surfaces as objects might\n(and in case of the cursor snooper, do not) be able to handle null\nobjects. Make sure that we validate not only the identifier (via the\nvmw_cmd_res_check) but also check that the actual resource exists before\ntrying to do something with it.\n\nFixes unchecked null-ptr reference in the snooping code.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40110"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/13c9e4ed125e19484234c960efe5ac9c55119523"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/299cfb5a7deabdf9ecd30071755672af0aced5eb"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/5ac2c0279053a2c5265d46903432fb26ae2d0da2"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/b6fca0a07989f361ceda27cb2d09c555d4d4a964"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-12T02:15:32Z"
+  }
+}
diff --git a/advisories/unreviewed/2025/11/GHSA-q6fq-7r5f-c3mx/GHSA-q6fq-7r5f-c3mx.json b/advisories/unreviewed/2025/11/GHSA-q6fq-7r5f-c3mx/GHSA-q6fq-7r5f-c3mx.json
@@ -0,0 +1,57 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-q6fq-7r5f-c3mx",
+  "modified": "2025-11-12T03:30:26Z",
+  "published": "2025-11-12T03:30:26Z",
+  "aliases": [
+    "CVE-2025-40111"
+  ],
+  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix Use-after-free in validation\n\nNodes stored in the validation duplicates hashtable come from an arena\nallocator that is cleared at the end of vmw_execbuf_process. All nodes\nare expected to be cleared in vmw_validation_drop_ht but this node escaped\nbecause its resource was destroyed prematurely.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40111"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/1822e5287b7dfa59d0af966756ebf1dc652b60ee"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/4c918f9d1ccccc0e092f43dcb2d8266f54d7340b"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/655a2f29bfc21105c80bf8a7d7aafa6eca8b4496"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/65608e991c2d771c13404e5c7ae122ac3c3357a4"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/867bda5d95d36f10da398fd4409e21c7002b2332"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/9a8eaca539708ca532747f606d231f70e684e8ca"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/dfe1323ab3c8a4dd5625ebfdba44dc47df84512a"
+    },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/fb7165e5f3b3b10721ff70553583ad12e90e447a"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-11-12T02:15:33Z"
+  }
+}
