SUSE CVE-2011-2728

The bsdglob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attackers to cause a denial of service crash via a glob expression with the GLOBALTDIRFUNC flag, which triggers an uninitialized pointer dereference...

SUSE CVE-2014-7844

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address...

SUSE CVE-2015-2305

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a...

Malicious Package

Overview bsd-ui-utils is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

Malicious code in bsd-ui-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e880f286613f79c0c5732a852f51b1e15404639f15d408cb689481cf5ef5df64 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

[SECURITY] Fedora 37 Update: libarchive-3.6.1-3.fc37

Libarchive is a programming library that can create and read several different streaming archive formats, including most popular tar variants, several cpio formats, and both BSD and GNU ar variants. It can also write shar archives and read ISO9660 CDROM images and ZIP archives...

Fedora: Security Advisory for libarchive (FEDORA-2022-e15be0091f)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

pfSense pfBlockerNG 2.1.4_26 Shell Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'pfSense plugin pfBlockerNG unauthenticated RCE as root', 'Description' = %q pfBlockerNG is a popular pfSense plugin that is not installed by...

Exploit for OS Command Injection in Telesquare Sdt-Cs3B1_Firmware

It is an exploit module for CVE-2021-46422, a remote code execut...

Exploit for Expression Language Injection in Atlassian Confluence_Data_Center

PoC exploit for CVE-2022-26134, a remote code execution vulnerab...

Fedora: Security Advisory for golang-github-tklauser-numcpus (FEDORA-2022-3969b64d4b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 35 Update: golang-github-tklauser-numcpus-0.2.3-7.fc35

Go module to get the number of CPUs on a Linux/BSD system...

[SECURITY] Fedora 35 Update: golang-github-hpcloud-tail-1.0.0-10.20190325gita1dbeea.fc35

A Go package striving to emulate the features of the BSD tail program...

Fedora: Security Advisory for golang-github-hpcloud-tail (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 36 Update: golang-github-hpcloud-tail-1.0.0-10.20190325gita1dbeea.fc36

A Go package striving to emulate the features of the BSD tail program...

Malicious code in bsd-global-nav-design-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8363937f49377a77760b70632c87c41f4786925e36ba7d072aca7dcae2639da5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1706 Malicious code in bsd-global-nav-design-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8363937f49377a77760b70632c87c41f4786925e36ba7d072aca7dcae2639da5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

ajenti 操作系统命令注入漏洞

ajenti is a Linux and BSD modular server management panel from ajenti open source. A security vulnerability exists in ajenti version 2.1.31, which stems from a problem with the component API. An attacker can exploit the vulnerability to achieve privilege escalation...

new packages: perl-BSD-Resource

An update is available for perl-BSD-Resource. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

FirmWire -b Full-System Baseband Firmware Emulation Platform For Fuzzing, Debugging, And Root-Cause Analysis Of Smartphone Baseband Firmwares

FirmWire is a full-system baseband firmware analysis platform that supports Samsung and MediaTek. It enables fuzzing, root-cause analysis, and debugging of baseband firmware images. See theFirmWire documentation to get started! Experiments & Missing Parts? Upon a vendor's request, the current...