SUSE-SU-2026:1361-1 Security update for himmelblau

This update for himmelblau fixes the following issues: Update to version 2.3.9+git0.a9fd29b; jscPED-14511: - CVE-2026-34397: Fix LPE due to name collision during NSS fake-primary group lookup bsc1261324. - CVE-2026-31979: Fix race condition when accessiung /tmp/krb5ccuid bsc1259548. -...

CVE-2026-31979

creationtimestamp| type| source ---|---|--- 2026-03-11 19:16:17+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-31979 2026-03-21 04:01:34+00:00| seen| https://bsky.app/profile/pigondrugs.bsky.social/post/3mhk5hro5qv2z...

EUVD-2023-31979

Malicious code in bioql PyPI...

CVE-2025-31979

creationtimestamp| type| source ---|---|--- 2025-08-28 17:18:18+00:00| seen| Telegram/-y76o2HBYXaOfjPzTQwHjcHkfT626CvaaVH8wApCLqx3EuA...

CVE-2024-31979

creationtimestamp| type| source ---|---|--- 2024-07-17 12:22:05+00:00| seen| https://t.me/cvedetector/1073...

CVE-2024-31979

Server-Side Request Forgery SSRF vulnerability in Apache StreamPipes during installation process of pipeline elements. Previously, StreamPipes allowed users to configure custom endpoints from which to install additional pipeline elements. These endpoints were not properly validated, allowing an...

CVE-2024-31979

Server-Side Request Forgery SSRF vulnerability in Apache StreamPipes during installation process of pipeline elements. Previously, StreamPipes allowed users to configure custom endpoints from which to install additional pipeline elements. These endpoints were not properly validated, allowing an...

CVE-2024-31979 Apache StreamPipes: Possibility of SSRF in pipeline element installation process

Server-Side Request Forgery SSRF vulnerability in Apache StreamPipes during installation process of pipeline elements. Previously, StreamPipes allowed users to configure custom endpoints from which to install additional pipeline elements. These endpoints were not properly validated, allowing an...

CVE-2024-31979

Apache StreamPipes is affected by a Server-Side Request Forgery (SSRF) vulnerability during the installation process of pipeline elements. The issue stems from insufficient validation of custom endpoints used to fetch/install additional elements, enabling an attacker to induce StreamPipes to issu...

CVE-2023-31979

creationtimestamp| type| source ---|---|--- 2023-05-09 18:43:46+00:00| seen| https://t.me/cibsecurity/63627...

CVE-2023-31979

Catdoc v0.95 was discovered to contain a global buffer overflow via the function processfile at /src/reader.c...

CVE-2023-31979

Catdoc v0.95 is affected by CVE-2023-31979: a global buffer overflow in the function process_file at /src/reader.c. Reports across NVD/OSV indicate high impact (C/H/I/A) with LOCAL attack vector and user interaction required. No patch/remediation details are provided in the connected documents; e...

CVE-2023-31979

Catdoc v0.95 was discovered to contain a global buffer overflow via the function processfile at /src/reader.c...

CVE-2021-31979

Windows Kernel Elevation of Privilege Vulnerability...

CVE-2021-31979

CVE-2021-31979 is a Windows kernel elevation-of-privilege vulnerability that affects multiple kernel components, with confirmed in-the-wild activity. Affected areas include NTOS kernel, Win32k, and ntfs.sys, indicating local privilege escalation via kernel-level flaws. Public documentation in the...

CVE-2021-31979

creationtimestamp| type| source ---|---|--- 2021-07-14 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=608 2021-07-14 16:59:39+00:00| seen| https://t.me/truesecator/1917 2021-07-14 22:25:09+00:00| seen| https://t.me/cibsecurity/26158 2021-07-15 10:13:10+00:00| seen|...

CVE-2021-31979

Windows Kernel Elevation of Privilege Vulnerability Recent assessments: gwillcox-r7 at July 14, 2021 5:35pm UTC reported: Update : Looks like this was used by the exploit brokerage company Candiru along with CVE-2021-33771 to deliver spyware to targeted users, which according to Microsoft’s blog...

Microsoft Patch Tuesday, July 2021 Edition

Microsoft today released updates to patch at least 116 security holes in its Windows operating systems and related software. At least four of the vulnerabilities addressed today are under active attack, according to Microsoft. Thirteen of the security bugs quashed in this months release earned...

KB5004298: Windows 8.1 and Windows Server 2012 R2 Security Update (July 2021)

The remote Windows host is missing security update 5004298. It is, therefore, affected by multiple vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself i...

KB5004307: Windows 7 and Windows Server 2008 R2 Security Update (July 2021)

The remote Windows host is missing security update 5004307. It is, therefore, affected by multiple vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself i...