Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

A vulnerability has been discovered in the Linux kernel. It has been identified as a problem. The vulnerability affects the intrcallback function in the drivers/net/usb/r8152.c file of the BPF component. Manipulation of this function results in the logging of excessive data. The attack can be...

Logging of Excessive Data

Overview pocketmine/pocketmine-mp is a highly customisable, open source server software for Minecraft: Bedrock Edition written in PHP Affected versions of this package are vulnerable to Logging of Excessive Data through the processing of client data JWTs in LoginPacket. An attacker can cause...

Logging of Excessive Data

Overview pocketmine/pocketmine-mp is a highly customisable, open source server software for Minecraft: Bedrock Edition written in PHP Affected versions of this package are vulnerable to Logging of Excessive Data through the processing of unexpected properties in the clientData of the LoginPacket...

Logging of Excessive Data

Overview Affected versions of this package are vulnerable to Logging of Excessive Data via the cookies attribute. An attacker can generate excessive warning-level log entries by sending specially crafted Cookie headers. Remediation Upgrade aiohttp to version 3.13.3 or higher. References - GitHub...

EUVD-2011-4568

Malware in sbrugna...

EUVD-2020-23130

Malware in sbrugna...

EUVD-2015-1696

Malware in sbrugna...

EUVD-2024-3431

Malicious code in bioql PyPI...

EUVD-2025-15444

Malicious code in bioql PyPI...

PT-2025-29930 · Apple +1 · Safari +1

Name of the Vulnerable Software and Affected Versions: AdGuard versions prior to 1.11.22 Description: The AdGuard plugin for Safari on MacOS excessively logged URLs accessed by Safari when the plugin was active. These logs were written to the MacOS general logs, accessible to any unsandboxed...

ROS-20250710-04

Tornado asynchronous network library vulnerability is related to excessive logging in parser multipart/form-data. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

Security update for python-tornado6

This update for python-tornado6 fixes the following issues: CVE-2025-47287: Fixed denial of service via generation of an extremely high volume of logs due to multipart/form-data parser bsc1243268. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like...

SUSE SLED15 / SLES15 Security Update : python-tornado (SUSE-SU-2025:01726-2)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:01726-2 advisory. - CVE-2025-47287: excessive logging when parsing malformed multipart/form-data can lead to a denial-of- service...

[SECURITY] [DSA 5938-1] python-tornado security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5938-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 06, 2025 https://www.debian.org/security/faq -...

Security update for python-tornado

This update for python-tornado fixes the following issues: CVE-2025-47287: excessive logging when parsing malformed multipart/form-data can lead to a denial-of-service bsc1243268. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...

SUSE: Security Advisory (SUSE-SU-2025:01726-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2025:01732-1 Security update for python-tornado

This update for python-tornado fixes the following issues: - CVE-2025-47287: excessive logging when parsing malformed multipart/form-data can lead to a denial-of-service bsc1243268...

SUSE-SU-2025:01726-1 Security update for python-tornado

This update for python-tornado fixes the following issues: - CVE-2025-47287: excessive logging when parsing malformed multipart/form-data can lead to a denial-of-service bsc1243268...

tornado: Tornado Multipart Form-Data Denial of Service

A flaw was found in Tornado. This vulnerability can lead to a a denial of service by generating an extremely high volume of log entries...

openSUSE Security Advisory (SUSE-SU-2025:01649-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...