EUVD-2022-24379

Malicious code in bioql PyPI...

@brave/wallet-standard-brave (>=0.0.8 <=0.0.12), @oraichain/owallet-wallet-standard (>=0.1.0 <=0.1.1) +1 more potentially affected by CVE-2024-30253 via @solana/web3.js (=1.58.0)

@solana/web3.js NPM version =1.58.0 is affected by a known vulnerability. The following packages have a transitive dependency on @solana/web3.js and may be impacted: - @brave/wallet-standard-brave =0.0.8, =0.1.0, =0.1.6, =0.1.10 Source cves: CVE-2024-30253 Source advisory: OSV:GHSA-8M45-2RJM-J347...

SUSE-SU-2023:4652-1 Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer

This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues: Update to version 1.58.0 - Release notes...

PT-2023-36295 · Unknown · Cdi-Uploadserver-Container +7

Name of the Vulnerable Software and Affected Versions: containerized-data-importer versions prior to 1.58.0 cdi-apiserver-container versions prior to 1.58.0 cdi-cloner-container versions prior to 1.58.0 cdi-controller-container versions prior to 1.58.0 cdi-importer-container versions prior to...

rust-toolset:ol8 security, bug fix, and enhancement update

rust 1.58.1-1 - Update to 1.58.1. 1.58.0-1 - Update to 1.58.0. 1.57.0-1 - Update to 1.57.0. 1.56.1-2 - Add rust-std-static-wasm32-wasi Resolves: rhbz1980080 1.56.0-1 - Update to 1.56.1. 1.55.0-1 - Update to 1.55.0. - Backport support for LLVM 13. 1.54.0-2 - Make std-static-wasm arch-specific to...

rust-toolset:rhel8 security, bug fix, and enhancement update

An update is available for rust-toolset, rust. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Rust Toolset provides the Rust programming language compiler rustc...

RLSA-2022:1894 Moderate: rust-toolset:rhel8 security, bug fix, and enhancement update

Rust Toolset provides the Rust programming language compiler rustc, the cargo build tool and dependency manager, and required libraries. The following packages have been upgraded to a later upstream version: rust 1.58.0. BZ2002883 Security Fixes: rust: Race condition in removedirall leading to...

CVE-2022-1030

Okta Advanced Server Access Client for Linux and macOS prior to version 1.58.0 was found to be vulnerable to command injection via a specially crafted URL. An attacker, who has knowledge of a valid team name for the victim and also knows a valid target host where the user has access, can execute...

Okta Advanced Server Access Client 操作系统命令注入漏洞

Okta Advanced Server Access Client is a zero-trust identity and access management for cloud and local infrastructures from Okta USA. An operating system command injection vulnerability exists in Okta Advanced Server Access Client versions prior to 1.58.0 on Linux and macOS, which could allow an...

PT-2022-13603 · Okta · Okta Advanced Server Access Client

Name of the Vulnerable Software and Affected Versions: Okta Advanced Server Access Client for Linux and macOS versions prior to 1.58.0 Description: The issue allows for command injection via a specially crafted URL. An attacker with knowledge of a valid team name for the victim and a valid target...

SUSE SLES15 Security Update : rust (SUSE-SU-2022:0491-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0491-1 advisory. - Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust...

DEBIAN-CVE-2022-21658

Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security Response WG was notified that the std::fs::removedirall standard library function is vulnerable a race condition enabling symlink following CWE-363. A...

Rust 竞争条件问题漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A Competing Conditions Issue vulnerability exists in Rust that arises from the product's std::fs::removedirall function that does not validate user permissions. An attacker could use this vulnerability to remove...

CVE-2022-21658

Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security Response WG was notified that the std::fs::removedirall standard library function is vulnerable a race condition enabling symlink following CWE-363. A...