[SECURITY] Fedora 43 Update: rust-collection_literals-1.0.3-1.fc43

Easy-to-use macros for initializing any collection...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989647)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989647 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on totaldatablocks As Yanming reported in bugzilla:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989219)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989219 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on totaldatablocks As Yanming reported in bugzilla:...

CVE-2025-62715

ClipBucket v5 is an open source video sharing platform. Versions 5.5.2-147 and below contain a stored Cross-Site Scripting XSS vulnerability in ClipBucket’s Collection tags feature. An authenticated normal user can create a tag containing HTML or JavaScript, which is later rendered unescaped in...

CVE-2025-62715 ClipBucket v5: Stored XSS via Collection Tags

ClipBucket v5 is an open source video sharing platform. Versions 5.5.2-147 and below contain a stored Cross-Site Scripting XSS vulnerability in ClipBucket’s Collection tags feature. An authenticated normal user can create a tag containing HTML or JavaScript, which is later rendered unescaped in...

CVE-2025-62715

ClipBucket v5 contains a stored XSS in the Collection tags feature affecting versions 5.5.2-#147 and earlier. An authenticated normal user can create a tag containing HTML/JS, which is rendered unescaped on collection detail and tag-list pages, resulting in arbitrary JavaScript execution in viewe...

CVE-2025-62715 ClipBucket v5: Stored XSS via Collection Tags

ClipBucket v5 is an open source video sharing platform. Versions 5.5.2-147 and below contain a stored Cross-Site Scripting XSS vulnerability in ClipBucket’s Collection tags feature. An authenticated normal user can create a tag containing HTML or JavaScript, which is later rendered unescaped in...

CVE-2025-62715 ClipBucket v5: Stored XSS via Collection Tags

ClipBucket v5 is an open source video sharing platform. Versions 5.5.2-147 and below contain a stored Cross-Site Scripting XSS vulnerability in ClipBucket’s Collection tags feature. An authenticated normal user can create a tag containing HTML or JavaScript, which is later rendered unescaped in...

CVE-2025-32786

The GLPI Inventory Plugin handles network discovery, inventory, software deployment, and data collection for GLPI agents. Versions 1.5.0 and below are vulnerable to SQL Injection. This issue is fixed in version 1.5.1...

PT-2025-45053

Name of the Vulnerable Software and Affected Versions ClipBucket versions 5.5.2 through 5.5.2-147 Description ClipBucket v5 is a video sharing platform that has a stored Cross-Site Scripting XSS issue within its Collection tags feature. A normal, authenticated user can create a tag containing HTM...

[SECURITY] Fedora 42 Update: rust-collection_literals-1.0.3-1.fc42

Easy-to-use macros for initializing any collection...

[SECURITY] Fedora 41 Update: rust-collection_literals-1.0.3-1.fc41

Easy-to-use macros for initializing any collection...

FreeBSD : Firefox -- Incorrect boundary conditions (af9c5b99-b808-11f0-8016-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the af9c5b99-b808-11f0-8016-b42e991fc52e advisory. https://bugzilla.mozilla.org/showbug.cgi?id=1979502 reports: Incorrect boundary conditions in the...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to trigger foreground gc during f2fsmapblocks in lfs mode w/ "mode=lfs" mount option, generic/299 will cause system panic as below: ------------ cut here ------------ kernel BUG at fs/f2fs/segment.c:2835! Call Trace:...

CVE-2025-58152

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the internal web page. With some crafted HTTP request, they can be accessed without authentication...

GHSA-F556-49JC-4RVC Ansible does not collect garbage after playbook run

A flaw was found in Ansible Base when using the awsssm connection plugin as its garbage collector is not happening after the playbook run is completed. Files would remain in the bucket exposing the data. This issue directly affects data confidentiality...

EUVD-2020-0023

Ansible does not collect garbage after playbook run...

CVE-2025-46363

Dell Secure Connect Gateway SCG 5.0 Application and Appliance versions 5.26.00.00 - 5.30.00.00, contain a Relative Path Traversal vulnerability in the SCG exposed for an internal collection download REST API if this REST API is enabled by Admin user from UI. A low privileged attacker with remote...

CVE-2025-58152

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the internal web page. With some crafted HTTP request, they can be accessed without authentication...

CVE-2025-58152

The CVE-2025-58152 entry concerns Century Systems FutureNet MA and IP-K series devices. According to connected sources, the vulnerability involves exposing firmware version and garbage collection information on an internal web page, which can be accessed via crafted HTTP requests without authenti...