156 matches found
UBUNTU-CVE-2025-40363
In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix field-spanning memcpy warning in AH output Fix field-spanning memcpy warnings in ah6output and ah6outputdone where extension headers are copied to/from IPv6 address fields, triggering fortify-string warnings about...
CVE-2025-40363
The CVE-2025-40363 vulnerability in the Linux kernel concerns net/ipv6: a field-spanning memcpy warning in AH output. Root cause: extension headers are copied into IPv6 address fields, triggering fortify-string warnings about writes beyond 16-byte saddr. The issue is resolved by copying addresses...
CVE-2025-40363 net: ipv6: fix field-spanning memcpy warning in AH output
In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix field-spanning memcpy warning in AH output Fix field-spanning memcpy warnings in ah6output and ah6outputdone where extension headers are copied to/from IPv6 address fields, triggering fortify-string warnings about...
SUSE-SU-2025:3809-1 Security update for rabbitmq-server
This update for rabbitmq-server fixes the following issues: - CVE-2025-50200: prevented logging of Basic Auth header from HTTP requests bsc1245105 - fixed a bad logrotate configuration that allowed escalation from rabbitmq to root, /var/log/rabbitmq ownership is now 750 bsc1246091...
Amazon Linux 2 : cups, --advisory ALAS2-2025-3028 (ALAS-2025-3028)
The version of cups installed on the remote host is prior to 1.6.3-51. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3028 advisory. A flaw was found in CUPS, a widely used printing service on Linux and UNIX-like systems. The issue arises when authentication is...
EUVD-2014-6269
Malware in sbrugna...
EUVD-2013-1281
Malware in sbrugna...
EUVD-2013-5406
Malware in sbrugna...
EUVD-2013-6839
Malware in sbrugna...
EUVD-2021-14532
Malware in sbrugna...
EUVD-2019-17246
Malware in sbrugna...
EUVD-2014-0286
Malware in sbrugna...
EUVD-2025-26502
Malicious code in bioql PyPI...
SUSE-SU-2025:03234-1 Security update for rabbitmq-server313
This update for rabbitmq-server313 fixes the following issues: - CVE-2025-50200: Fixed logging of Basic Auth header from an HTTP request bsc1245105 - Fixed bad logrotate configuration allowing potential escalation from rabbitmq to root bsc1246091...
php: Stream HTTP wrapper header check might omit basic auth header
A flaw was found in PHP. This vulnerability allows certain headers to be either not sent or misinterpreted due to insufficient validation of the end-of-line characters via user-supplied headers...
RabbitMQ Node can log Basic Auth header from an HTTP request
...
CVE-2009-20009 Belkin Bulldog Plus Web Service Buffer Overflow
Belkin Bulldog Plus version 4.0.2 build 1219 contains a stack-based buffer overflow vulnerability in its web service authentication handler. When a specially crafted HTTP request is sent with an oversized Authorization header, the application fails to properly validate the input length before...
OESA-2025-2088 nginx security update
NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication...
Ollama <= 0.9.6 Cross-Domain Token Exposure
The version of Ollama installed on the remote host is 0.9.6 or earlier. It is, therefore, affected by a vulnerability. Cross-Domain Token Exposure in server.auth.getAuthorizationToken in Ollama 0.9.6 allows remote attackers to steal authentication tokens and bypass access controls via a malicious...
AZL-66308 CVE-2025-53859 affecting package nginx for versions less than 1.22.1-14
NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happe...