176 matches found
Astra Linux – Vulnerability in Thunderbird
An optimization in WebGL was incorrect in some cases, and could have led to memory corruption and a potentially exploitable crash. Note: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 106...
Astra Linux – Vulnerability in Chromium
The use of after-free in CSS in Google Chrome before version 106.0.5249.62 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...
Astra Linux – Vulnerability in Chromium
The incorrect security UI in full screen in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to spoof the security UI through a crafted HTML page. Chromium security severity: Medium...
Astra Linux – Vulnerability in Chromium
The use of after-free in memory management in Google Chrome before version 106.0.5249.62 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...
Astra Linux – Vulnerability in Chromium
A heap buffer overflow in WebSQL in Google Chrome prior to version 106.0.5249.119 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...
Astra Linux – Vulnerability in Firefox and Thunderbird
Certain types of allocations lacked annotations that, if the Garbage Collector was in a specific state, could have led to memory corruption and potentially exploitable crashes. This vulnerability affects Firefox 106, Firefox ESR 102.4, and Thunderbird 102.4...
Astra Linux – Vulnerability in Firefox
There was a potential “use-after-free” vulnerability in SVG images if the Refresh Driver was destroyed at an inappropriate time. This could lead to memory corruption or a potentially exploitable crash. Note: This advisory was added on December 13th, 2022 after discovering that it had inadvertentl...
Astra Linux – Vulnerability in Firefox
Mozilla developers Timothy Nikkel, Ashley Hale, and the Mozilla Fuzzing Team reported memory safety bugs in Firefox 105. Some of these bugs exhibited signs of memory corruption, and we assume that with sufficient effort, some of these bugs could have been exploited to execute arbitrary code. This...
Astra Linux – Vulnerability in Firefox
Mozilla developers Gabriele Svelto, Yulia Startsev, Andrew McCreight, and the Mozilla Fuzzing Team reported memory safety bugs in Firefox 106. Some of these bugs exhibited signs of memory corruption, and we assume that with sufficient effort, some of these bugs could have been exploited to execut...
Fedora 42 : kernel (2026-db3618772b)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-db3618772b advisory. The 6.19.14-106 kernel build contains additional mitigations for new code paths in fragnesia, and a couple of other security updates without fancy names or...
Amazon Linux 2 : runfinch-finch, --advisory ALAS2DOCKER-2026-106 (ALASDOCKER-2026-106)
"The version of runfinch-finch installed on the remote host is prior to 1.15.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2DOCKER-2026-106 advisory. gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting fr...
MiracleLinux 4 : util-linux-ng-2.17.2-12.9.AXS4 (AXSA:2013-106:01)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-106:01 advisory. The util-linux-ng package contains a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, Util-linux...
EUVD-2025-200899
Malicious code in elf-stats-ginger-ledger-106 npm...
MAL-2025-192076 Malicious code in elf-stats-lanternlit-fir-106 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d3db2bc728d131283eafdbec2016add990f3760c800a5f57a5e15a209d88ae4 The package elf-stats-lanternlit-fir-106 was found to contain malicious code...
EUVD-2025-200924
Malicious code in elf-stats-festive-cocoa-106 npm...
Malicious code in elf-stats-lanternlit-fir-106 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d3db2bc728d131283eafdbec2016add990f3760c800a5f57a5e15a209d88ae4 The package elf-stats-lanternlit-fir-106 was found to contain malicious code...
Malicious code in elf-stats-ginger-ledger-106 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c130fdaa8789c7039439e2ec9b5d452523342963e39d73d7b561041d451777f7 The package elf-stats-ginger-ledger-106 was found to contain malicious code...
Malicious code in elf-stats-festive-cocoa-106 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cbfbcb889b20cc49220f86924c8ad4e7f8da73bd8099f6971d268488b4bdfc9 The package elf-stats-festive-cocoa-106 was found to contain malicious code...
MAL-2025-192028 Malicious code in elf-stats-festive-cocoa-106 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cbfbcb889b20cc49220f86924c8ad4e7f8da73bd8099f6971d268488b4bdfc9 The package elf-stats-festive-cocoa-106 was found to contain malicious code...
EUVD-2022-49663
Malicious code in bioql PyPI...