kernel security update

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

EUVD-2022-36789

Malicious code in bioql PyPI...

EUVD-2024-54412

Malicious code in bioql PyPI...

EUVD-2023-29513

Malicious code in bioql PyPI...

EUVD-2025-23935

Malicious code in bioql PyPI...

EUVD-2024-1185

Malicious code in bioql PyPI...

UBUNTU-CVE-2022-50243

In the Linux kernel, the following vulnerability has been resolved: sctp: handle the error returned from sctpauthasocinitactivekey When it returns an error from sctpauthasocinitactivekey, the activekey is actually not updated. The old shkey will be freeed while it's still used as active key in...

In iperf before 3.19.1, iperf_auth.c has a Base64Decode assertion failure and application exit upon a malformed authentication attempt.

...

elysiajs-cors 安全漏洞

elysiajs-cors is an open source plugin by elysia. A security vulnerability exists in elysiajs-cors version 1.3.0 and earlier, which stems from an authentication error that could lead to a bypass of cross-resource sharing restrictions...

CVE-2025-54392

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows XSS for authentication error data, a different vulnerability than CVE-2025-47189...

OESA-2025-1973 iperf3 security update

Iperf is a tool for active measurements of the maximum achievable bandwidth on IP networks. It supports tuning of various parameters related to timing, protocols, and buffers. Security Fixes: iperf is an open source tool for ESnet to actively measure the maximum bandwidth that can be achieved on ...

CVE-2025-54392

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows XSS for authentication error data, a different vulnerability than CVE-2025-47189...

CVE-2025-54392

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows XSS for authentication error data, a different vulnerability than CVE-2025-47189...

sunrpc: handle SVC_GARBAGE during svc auth processing as auth error

...

Netwrix Directory Manager 安全漏洞

Netwrix Directory Manager is a group and user management software from Netwrix, Inc. A security vulnerability exists in Netwrix Directory Manager versions prior to 11.1.25162.02 that stems from a cross-site scripting vulnerability in authentication error data...

ROS-20250807-02

The vulnerability of the Podman OCI container management and launching software tool is related to errors in the in the certificate authentication procedure. Exploitation of the vulnerability could allow an attacker, acting remotely to execute a man-in-the-middle attack...

PT-2025-32278 · Imanami +1 · Groupid +1

Name of the Vulnerable Software and Affected Versions: Netwrix Directory Manager formerly Imanami GroupID versions 11.0.0.0 through 11.1.25162.02 Description: The software contains a cross-site scripting XSS issue related to authentication error data. Recommendations: Update Netwrix Directory...

CVE-2025-54392

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 is affected by CVE-2025-54392, a cross-site scripting (XSS) vulnerability in authentication error data. The issue affects the authentication error handling pathway and is documented as a distinct vulnerability from...

CVE-2025-54392

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows XSS for authentication error data, a different vulnerability than CVE-2025-47189...

CVE-2025-54392

Netwrix Directory Manager formerly Imanami GroupID 11.0.0.0 before 11.1.25162.02 allows XSS for authentication error data, a different vulnerability than CVE-2025-47189...