MiracleLinux 9 : kernel-5.14.0-570.12.1.el9_6 (AXSA:2025-10392:38)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10392:38 advisory. kernel: drm: nv04: Fix out of bounds access CVE-2024-27008 kernel: Bluetooth: Fix use-after-free bugs caused by scosocktimeout CVE-2024-27398 kerne...

MAL-2025-35891 Malicious code in test-mlw2-obeah-tends (npm)

The package test-mlw2-obeah-tends was found to contain malicious code...

CVE-2020-35891

An issue was discovered in the ordnung crate through 2020-09-03 for Rust. compact::Vec violates memory safety via a remove double free...

CVE-2024-35891

creationtimestamp| type| source ---|---|--- 2025-05-04 09:17:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14737...

Linux Distros Unpatched Vulnerability : CVE-2024-35891

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: Fix potential null pointer dereference In lan8814getsigrx and...

CVE-2024-35891

In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: Fix potential null pointer dereference In lan8814getsigrx and lan8814getsigtx ptpparseheader may return NULL as ptpheader due to abnormal packet type or corrupted packet. Fix this bug by adding ptpheader check...

CVE-2024-35891 net: phy: micrel: Fix potential null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: Fix potential null pointer dereference In lan8814getsigrx and lan8814getsigtx ptpparseheader may return NULL as ptpheader due to abnormal packet type or corrupted packet. Fix this bug by adding ptpheader check...

xxlib (>=0.1.0 <=0.4.0) potentially affected by CVE-2020-35890 +1 more via ordnung (=0.0.1)

ordnung CARGO version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on ordnung and may be impacted: - xxlib =0.1.0, =0.4.0 Source cves: CVE-2020-35890, CVE-2020-35891 Source advisory: OSV:GHSA-4WJ3-P7HJ-CVX8...

xxlib (>=0.1.0 <=0.4.0) potentially affected by CVE-2020-35890 +1 more via ordnung (=0.0.1)

ordnung CARGO version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on ordnung and may be impacted: - xxlib =0.1.0, =0.4.0 Source cves: CVE-2020-35890, CVE-2020-35891 Source advisory: OSV:GHSA-QRWC-JXF5-G8X6...

CVE-2020-35891

CVE-2020-35891 concerns the Rust crate ordnung (up to version 0.0.1) where the type compact::Vec can violate memory safety due to a double-free during an emulated remove() operation. The issue is explicitly described as a memory-safety problem in compact::Vec, including a double-free scenario whe...

xxlib (>=0.1.0 <=0.4.0) potentially affected by CVE-2020-35890 +1 more via ordnung (=0.0.1)

ordnung CARGO version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on ordnung and may be impacted: - xxlib =0.1.0, =0.4.0 Source cves: CVE-2020-35890, CVE-2020-35891 Source advisory: OSV:RUSTSEC-2020-0038...