OPENSUSE-SU-2024:10979-1 libqxmpp-devel-1.4.0-1.2 on GA media

These are all security issues fixed in the libqxmpp-devel-1.4.0-1.2 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:10936-1 libdwarf-devel-20210528-1.2 on GA media

These are all security issues fixed in the libdwarf-devel-20210528-1.2 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:11004-1 libtpms-devel-0.8.4-2.2 on GA media

These are all security issues fixed in the libtpms-devel-0.8.4-2.2 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:10496-1 libneon-devel-0.30.1-1.11 on GA media

These are all security issues fixed in the libneon-devel-0.30.1-1.11 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:10929-1 libcomps-devel-0.1.17-1.2 on GA media

These are all security issues fixed in the libcomps-devel-0.1.17-1.2 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:13286-1 assimp-devel-5.3.1-1.1 on GA media

These are all security issues fixed in the assimp-devel-5.3.1-1.1 package on the GA media of openSUSE Tumbleweed...

The vulnerability of the development package for integrating cloud services and communication functions in IoT devices arises from the fact that operation data is exposed beyond the buffer in memory. This allows attackers to escalate their privileges and gain unauthorized access to protected information.

The vulnerability of the development package for integrating cloud services and communication functions in IoT devices is related to the issue where operations go beyond the buffer in memory during system call processing. Exploiting this vulnerability can allow attackers to enhance their privileg...

Malicious code in bubble-dev (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis de676130e5f20504bbb50fd8fdbed9113a13ef5cb82cb7989dfdd28a8bfb4f42 The OpenSSF Package Analysis project identified 'bubble-dev' @ 50.1.1 npm as malicious. It is considered malicious because: - The package...

libssh buffer overflow vulnerability (CNVD-2021-71262)

Libssh is a C development package from the Libssh organization for accessing SSH services, which can execute remote commands, file transfers, and provide a secure transport channel for remote programs. libssh is vulnerable to a buffer overflow vulnerability, which stems from the fact that libssh...

SUSE: Security Advisory (SUSE-SU-2019:0527-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

idm:DL1 and idm:client security, bug fix, and enhancement update

bind-dyndb-ldap 11.6-2 - Rebuild against bind 9.11.26 - Resolves: rhbz1904612 11.6-1 - New upstream release - Resolves: rhbz1891735 ipa 4.9.2-3.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 4.9.2-3 - ipa-client-install displays false message 'sudo binary does not seem to ...

[SECURITY] Fedora 32 Update: qt-4.8.7-55.fc32

Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling...

RHEL 8 : libyang (RHSA-2019:4360)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:4360 advisory. The libyang package provides a library for YANG data modeling language. libyang is a YANG data modelling language parser and toolkit written...

[SECURITY] Fedora 29 Update: nbdkit-1.12.8-1.fc29

NBD is a protocol for accessing block devices hard disks and disk-like things over the network. nbdkit is a toolkit for creating NBD servers. The key features are: Multithreaded NBD server written in C with good performance. Minimal dependencies for the basic server. Liberal license BSD allows...

[SECURITY] Fedora 30 Update: nbdkit-1.12.7-1.fc30

NBD is a protocol for accessing block devices hard disks and disk-like things over the network. nbdkit is a toolkit for creating NBD servers. The key features are: Multithreaded NBD server written in C with good performance. Minimal dependencies for the basic server. Liberal license BSD allows...

The vulnerability of the `ppdcSource::find_variable` function in the workmanir utility from the libirman-dev package allows a hacker to cause a service failure.

The vulnerability of the ppdcSource::findvariable function /usr/lib/x8664-linux-gnu/libcupsppdc.so.1 in the workmanir utility from the libirman-dev package is related to buffer overflow vulnerabilities 0x00007ffff7bca37a. Exploiting this vulnerability may allow an attacker to cause a service...

Machinae v1.4.8 - Security Intelligence Collector

Machinae is a tool for collecting intelligence from public sites/feeds about various security-related pieces of data: IP addresses, domain names, URLs, email addresses, file hashes, and SSL fingerprints. It was inspired by Automater, another excellent tool for collecting information. The Machinae...

SUSE-SU-2018:1902-1 Security update for libqt4

This update for libqt4 fixes the following issues: LibQt4 was updated to 4.8.7 bsc1039291, CVE-2016-10040: See http://download.qt.io/officialreleases/qt/4.8/4.8.7/changes-4.8.7 for more details. Also libQtWebkit4 was updated to 2.3.4 to match libqt4. Also following bugs were fixed: - Enable...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Development Package for Apache Spark

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8.0 that is provided with IBM Development Package for Apache Spark. These issues are disclosed as part of the IBM Java SDK updates in October 2016. The IBM Development Package for Apache Spark has addressed t...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Development Package for Apache Spark

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8.0, which is used by IBM Development Package for Apache Spark. These issues are disclosed as part of the IBM Java SDK updates in July 2017. These vulnerabilities could affect the negotiation and use of certa...