CVE-2025-1231
published 2025-02-11CVE-2025-1231: Improper password reset in PAM Module in Devolutions Server 2024.3.10.0 and earlier allows an authenticated user to reuse the oracle user password after…
PriorityP430medium5.4CVSS 3.1
AVNACLPRLUINSUCLILAN
EPSS
0.32%
24.1th percentile
Improper password reset in PAM Module in Devolutions Server 2024.3.10.0 and earlier allows an authenticated user to reuse the oracle user password after check-in due to crash in the password reset functionality.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| devolutions | devolutions_server | < 2024.3.11.0 | 2024.3.11.0 |
| devolutions | server | <= 2024.3.10.0 | — |
| linux | linux_kernel | >= 6.13.0 < 6.17.8 | 6.17.8 |
| linux | linux_kernel | >= 6.2.0 < 6.6.117 | 6.6.117 |
| linux | linux_kernel | >= 6.7.0 < 6.12.58 | 6.12.58 |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
vendor_redhat6.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb
osv·2025-12-09
CVE-2025-40329 drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb
drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb
In the Linux kernel, the following vulnerability has been resolved:
drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb
The Mesa issue referenced below pointed out a possible deadlock:
[ 1231.611031] Possible interrupt unsafe locking scenario:
[ 1231.611033] CPU0 CPU1
[ 1231.611034] ---- ----
[ 1231.611035] lock(&xa->xa_lock#17);
[ 1231.611038] local_irq_disable();
[ 1231.611039] lock(&fence->lock);
[ 1231.611041] lock(&xa->xa_lock#17);
[ 1231.611044]
[ 1231.611045] lock(&fence->lock);
[ 1231.611047]
*** DEADLOCK ***
In this example, CPU0 would be any function accessing job->dependencies
through the xa_* functions that don't disable interrupts (eg:
drm_sched_job_add_dependency(), drm_sched_entity_kill_jobs_cb()).
CPU1 is
GHSA
GHSA-mjmw-3m65-4c84: Improper password reset in PAM Module in Devolutions Server 2024
ghsa_unreviewed·2025-02-11
CVE-2025-1231 [MEDIUM] CWE-287 GHSA-mjmw-3m65-4c84: Improper password reset in PAM Module in Devolutions Server 2024
Improper password reset in PAM Module in Devolutions Server 2024.3.10.0 and earlier allows an authenticated user to reuse the oracle user password after check-in due to crash in the password reset functionality.
Red Hat
vim: Vim double-free vulnerability during Vim9 script import operations
vendor_redhat·2025-08-11·CVSS 6.9
CVE-2025-55158 [MEDIUM] CWE-415 vim: Vim double-free vulnerability during Vim9 script import operations
vim: Vim double-free vulnerability during Vim9 script import operations
Vim is an open source, command line text editor. In versions from 9.1.1231 to before 9.1.1406, when processing nested tuples during Vim9 script import operations, an error during evaluation can trigger a double-free in Vim’s internal typed value (typval_T) management. Specifically, the clear_tv() function may attempt to free memory that has already been deallocated, due to improper lifetime handling in the handle_import / ex_import code paths. The vulnerability can only be triggered if a user explicitly opens and executes a specially crafted Vim script. This issue has been patched in version 9.1.1406.
A double-free vulnerability was found in Vim. This flaw allows an attacker to trick a user into processing a speciall
Red Hat
vim: Vim heap use-after-free vulnerability when processing recursive tuple data types
vendor_redhat·2025-08-11·CVSS 6.9
CVE-2025-55157 [MEDIUM] CWE-416 vim: Vim heap use-after-free vulnerability when processing recursive tuple data types
vim: Vim heap use-after-free vulnerability when processing recursive tuple data types
Vim is an open source, command line text editor. In versions from 9.1.1231 to before 9.1.1400, When processing nested tuples in Vim script, an error during evaluation can trigger a use-after-free in Vim’s internal tuple reference management. Specifically, the tuple_unref() function may access already freed memory due to improper lifetime handling, leading to memory corruption. The exploit requires direct user interaction, as the script must be explicitly executed within Vim. This issue has been patched in version 9.1.1400.
A use-after-free vulnerability was found in Vim. This flaw allows an attacker who can trick a user into processing a specially crafted file to trigger the use-after-free, causing the
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2025-40329 kernel: drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb
bugzilla·2025-12-09
CVE-2025-40329 [MEDIUM] CVE-2025-40329 kernel: drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb
CVE-2025-40329 kernel: drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb
In the Linux kernel, the following vulnerability has been resolved:
drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb
The Mesa issue referenced below pointed out a possible deadlock:
[ 1231.611031] Possible interrupt unsafe locking scenario:
[ 1231.611033] CPU0 CPU1
[ 1231.611034] ---- ----
[ 1231.611035] lock(&xa->xa_lock#17);
[ 1231.611038] local_irq_disable();
[ 1231.611039] lock(&fence->lock);
[ 1231.611041] lock(&xa->xa_lock#17);
[ 1231.611044]
[ 1231.611045] lock(&fence->lock);
[ 1231.611047]
*** DEADLOCK ***
In this example, CPU0 would be any function accessing job->dependencies
through the xa_* functions that don't disable interrupts (eg:
drm_sched_job_add_dependency(), drm_sched_entity_kil
Bugzilla
CVE-2025-55157 vim: Vim heap use-after-free vulnerability when processing recursive tuple data types
bugzilla·2025-08-12·CVSS 6.9
CVE-2025-55157 [MEDIUM] CVE-2025-55157 vim: Vim heap use-after-free vulnerability when processing recursive tuple data types
CVE-2025-55157 vim: Vim heap use-after-free vulnerability when processing recursive tuple data types
Vim is an open source, command line text editor. In versions from 9.1.1231 to before 9.1.1400, When processing nested tuples in Vim script, an error during evaluation can trigger a use-after-free in Vim’s internal tuple reference management. Specifically, the tuple_unref() function may access already freed memory due to improper lifetime handling, leading to memory corruption. The exploit requires direct user interaction, as the script must be explicitly executed within Vim. This issue has been patched in version 9.1.1400.
Bugzilla
CVE-2025-55158 vim: Vim double-free vulnerability during Vim9 script import operations
bugzilla·2025-08-12·CVSS 6.9
CVE-2025-55158 [MEDIUM] CVE-2025-55158 vim: Vim double-free vulnerability during Vim9 script import operations
CVE-2025-55158 vim: Vim double-free vulnerability during Vim9 script import operations
Vim is an open source, command line text editor. In versions from 9.1.1231 to before 9.1.1406, when processing nested tuples during Vim9 script import operations, an error during evaluation can trigger a double-free in Vim’s internal typed value (typval_T) management. Specifically, the clear_tv() function may attempt to free memory that has already been deallocated, due to improper lifetime handling in the handle_import / ex_import code paths. The vulnerability can only be triggered if a user explicitly opens and executes a specially crafted Vim script. This issue has been patched in version 9.1.1406.
2025-02-11
Published