SUSE CVE-2025-9901

A flaw was found in libsoup's caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be...

DEBIAN-CVE-2025-9901

A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be...

CVE-2025-9901

A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be...

AZL-67058 CVE-2025-9901 affecting package libsoup 3.4.4-12

A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be...

AZL-67061 CVE-2025-9901 affecting package libsoup 3.0.4-12

A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be...

UBUNTU-CVE-2025-9901

A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be...

CVE-2025-9901

CVE-2025-9901 affects the libsoup library’s SoupCache: it ignores the HTTP Vary header when evaluating cached responses. This can cause cached content to be improperly reused across requests, potentially exposing sensitive data in proxy or multi-user environments. Confidentiality impact is indica...

CVE-2025-9901 Libsoup: improper handling of http vary header in libsoup caching

A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be...

SAMSUNG Calendar 安全漏洞

SAMSUNG Calendar is a calendar module from Samsung South Korea. A security vulnerability exists in SAMSUNG Calendar prior to version 12.5.06.5 and prior to version 12.6.01.12, which stems from improper access control and could allow a physical attacker to access multi-user profile data...

PT-2025-35713

Name of the Vulnerable Software and Affected Versions: libsoup affected versions not specified Description: A flaw exists in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. The HTTP Vary header ensures that responses vary appropriate...

Linux Distros Unpatched Vulnerability : CVE-2021-32773

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Racket is a general-purpose programming language and an ecosystem for language-oriented programming. In versions prior to 8.2, code evaluated using the Racket...

CVE-2025-48343

CVE-2025-48343 refers to a CSRF to Stored XSS vulnerability in the WordPress plugin WPMU Ldap Authentication (affected: versions

Linux Distros Unpatched Vulnerability : CVE-2025-30167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jupyter Core is a package for the core common functionality of Jupyter projects. When using Jupyter Core prior to version 5.8.0 on Windows, the shared...

Linux Distros Unpatched Vulnerability : CVE-2021-41055

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Gajim 1.2.x and 1.3.x before 1.3.3 allows remote attackers to cause a denial of service crash via a crafted XMPP Last Message Correction XEP-0308 message in...

Cryptanalysis of LC-MUME: a Lightweight Certificateless Multi-User Matchmaking Encryption for Mobile Devices

Yang et al. proposed a lightweight certificateless multiuser matchmaking encryption LC-MUME scheme for mobile devices, published in IEEE Transactions on Information Forensics and Security TIFS DOI: 10.1109/TIFS.2023.3321961. Their construction aims to reduce computational and communication overhe...

Invariant-Based Robust Weights Watermark for Large Language Models

Watermarking technology has gained significant attention due to the increasing importance of intellectual property IP rights, particularly with the growing deployment of large language models LLMs on billions resource-constrained edge devices. To counter the potential threats of IP theft by...

SUSE CVE-2025-49136

listmonk is a standalone, self-hosted, newsletter and mailing list manager. Starting in version 4.0.0 and prior to version 5.0.2, the env and expandenv template functions which is enabled by default in Sprig enables capturing of env variables on host. While this may not be a problem on single-use...

Security update for screen

This update for screen fixes the following issues: Security issues fixed: CVE-2025-46802: temporary chmod of a user's TTY to mode 0666 when attempting to attach to a multi-user session allows for TTY hijacking bsc1242269. Other issues fixed: Use TTY file descriptor passing after a suspend MSGCONT...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : screen (SUSE-SU-2025:02016-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:02016-1 advisory. Security issues fixed: - CVE-2025-46802: temporary chmod of a user's TTY to mode 0666 when attempting to...

Security update for screen

This update for screen fixes the following issues: Security issues fixed: CVE-2025-46802: temporary chmod of a user's TTY to mode 0666 when attempting to attach to a multi-user session allows for TTY hijacking bsc1242269. Other issues fixed: Use TTY file descriptor passing after a suspend MSGCONT...