MAL-2025-47015 Malicious code in checking-ips (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 941a9d77f27a5cf03000409003dc26dc454bbdfe54ff4e4bdcd72c5184e45263 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Adversarial Attacks against Automated Fact-Checking: a Survey

In an era where misinformation spreads freely, fact-checking FC plays a crucial role in verifying claims and promoting reliable information. While automated fact-checking AFC has advanced significantly, existing systems remain vulnerable to adversarial attacks that manipulate or generate claims,...

NFS: Fix filehandle bounds checking in nfs_fh_to_dentry()

...

Microsoft Office 安全漏洞

Microsoft Office is an office software suite of products from the U.S. company Microsoft Microsoft. The product's common components include Word, Excel, Access, Powerpoint, FrontPage, etc.. A code execution vulnerability exists in Microsoft Office, which is caused due to improper boundary checkin...

Microsoft Excel 安全漏洞

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code execution vulnerability exists in Microsoft Excel, which is caused due to incorrect boundary checking. An attacker can exploit the vulnerability to overflow a buffer and execute arbitrary code on t...

Microsoft Office Visio 安全漏洞

Microsoft Office Visio is a U.S. Microsoft Microsoft Office software series responsible for drawing flowcharts and schematic diagrams in the software. A code execution vulnerability exists in Microsoft Office Visio, which is caused due to improper boundary checking. An attacker could exploit the...

CVE-2021-26383

Insufficient bounds checking in AMD TEE Trusted Execution Environment could allow an attacker with a compromised userspace to invoke a command with malformed arguments leading to out of bounds memory access, potentially resulting in loss of integrity or availability...

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: bpf: Don't use tnumrange on array range checking for poke descriptors CVE-2022-49985 kernel: posix-cpu-timers: fix race between...

CVE-2025-39730

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfsfhtodentry The function needs to check the minimal filehandle length before it can access the embedded filehandle...

AZL-74183 CVE-2025-39730 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfsfhtodentry The function needs to check the minimal filehandle length before it can access the embedded filehandle...

CVE-2025-39730 NFS: Fix filehandle bounds checking in nfs_fh_to_dentry()

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfsfhtodentry The function needs to check the minimal filehandle length before it can access the embedded filehandle...

CVE-2021-26383

Insufficient bounds checking in AMD TEE Trusted Execution Environment could allow an attacker with a compromised userspace to invoke a command with malformed arguments leading to out of bounds memory access, potentially resulting in loss of integrity or availability...

AMD多款产品 安全漏洞

AMD Graphics Driver and others are products of UltraMed Semiconductor AMD.AMD Graphics Driver is an integrated graphics driver.AMD Embedded Processors are a series of embedded high-performance GPUs.AMD Client Processors are processors designed for client devices such as AMD Client Processors are...

CVE-2021-26383

The CVE-2021-26383 entry concerns AMD TEE (Trusted Execution Environment) with insufficient bounds checking that could allow a compromised userspace process to pass malformed arguments, triggering out-of-bounds memory access and potentially harming integrity or availability. The connected documen...

Malicious code in checking-ip (npm)

The package checking-ip was found to contain malicious code...

MAL-2025-43775 Malicious code in checking-ip (npm)

The package checking-ip was found to contain malicious code...

CVE-2025-57776

There is an out of bounds write vulnerability due to improper bounds checking resulting in an invalid address when parsing a DSB file with Digilent DASYLab. This vulnerability may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially...

CVE-2025-57777

There is an out of bounds write vulnerability due to improper bounds checking in displ2.dll when parsing a DSB file with Digilent DASYLab. This vulnerability may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted DSB file. Th...

CVE-2025-38679

CVE-2025-38679 – Linux kernel media venus OOB read : The vulnerability is in media: venus where event_seq_changed() processes a firmware property count without validating the payload length, enabling out-of-bounds memory access. Impact: kernel crashes and potential information disclosure if firmw...

cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value

...