6422 matches found
Important: Red Hat Security Advisory: .NET 9.0 security update
An update for .NET 9.0 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
CLSA-2026-1775779143 java-11-openjdk: Fix of 5 CVEs
Upgrade to openjdk-11.0.30+7 GA. The following CVEs were fixed: - CVE-2026-21945: enhance Certificate Checking - CVE-2026-21933: improve HttpServer Request handling - CVE-2026-21925: improve JMX connections - CVE-2025-65018: fix LIBPNG heap buffer overflow - CVE-2025-64720: fix LIBPNG buffer...
Malicious code in hardhat-starter-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 127bcfdba774e2dd942b89041f670f62c7523c32b766606d81a1b229b961b1a4 The package hardhat-starter-kit was found to contain malicious code...
MAL-2026-2769 Malicious code in hardhat-starter-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 127bcfdba774e2dd942b89041f670f62c7523c32b766606d81a1b229b961b1a4 The package hardhat-starter-kit was found to contain malicious code...
Malicious code in deployer-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da11ad369455db7b2449adf6bc2da43741e5ae36ae35188889dab9cbd7f221b8 The package deployer-kit was found to contain malicious code...
MAL-2026-2754 Malicious code in deployer-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da11ad369455db7b2449adf6bc2da43741e5ae36ae35188889dab9cbd7f221b8 The package deployer-kit was found to contain malicious code...
Malicious code in ccip-starter-kit-hardhat (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18950b48cb8b769d2cda9645f7c64f05698aad343186a22e3a84af7662856c39 The package ccip-starter-kit-hardhat was found to contain malicious code...
MAL-2026-2739 Malicious code in ccip-starter-kit-hardhat (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18950b48cb8b769d2cda9645f7c64f05698aad343186a22e3a84af7662856c39 The package ccip-starter-kit-hardhat was found to contain malicious code...
Malicious code in @appleseed-apple/ac-sass-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c09c442c9bf5d1d38099a4ea05b85daf5b071a2d9e6e87dc72d030ecd4ca5404 The package @appleseed-apple/ac-sass-kit was found to contain malicious code...
MAL-2026-2709 Malicious code in @appleseed-apple/ac-sass-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c09c442c9bf5d1d38099a4ea05b85daf5b071a2d9e6e87dc72d030ecd4ca5404 The package @appleseed-apple/ac-sass-kit was found to contain malicious code...
.NET 9.0 security update
9.0.116-1.0.1 - Add support for Oracle Linux 9.0.116-1 - Update to .NET SDK 9.0.116 and Runtime 9.0.15 - Resolves: RHEL-163389...
Important: .NET 9.0 security update
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 9.0.116 and .NET Runtime...
io.github.epi155:promethium-pgp-jdk5 (=0.5-B1), io.github.hWorblehat:nexus3-external-auth-plugin (=0.1.0) +220 more potentially affected by CVE-2026-3505 via org.bouncycastle:bcpg-jdk15to18 (>=1.65 <=1.82)
org.bouncycastle:bcpg-jdk15to18 MAVEN version =1.65, =4.5.0-alpha2, =4.5.0-alpha2, =4.5.0-alpha2, =4.5.0-alpha2, =4.5.0-beta3, =4.5.0-alpha2, =4.5.0-alpha2, =4.5.0-alpha2, =4.5.0-alpha2, =1.9.0, =1.9.0, =1.9.0, =1.9.0, =1.10.0 and more Source cves: CVE-2026-3505 Source advisory:...
CVE-2026-27258
DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that could lead to application denial-of-service. An attacker could leverage this vulnerability to corrupt memory, causing the application to crash or become unresponsive. Exploitation of this issue...
org.apache.avro/avro: Apache Avro Java SDK: Code injection on Java generated code
A code injection flaw has been discovered in Apache Avro. This vulnerability manifests when generating specific records from untrusted Avro schemas...
coruna-exploit-kit-analysis
Coruna iOS Exploit Kit — Reverse Engineering Analysis Def...
PT-2026-32765
DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that could lead to application denial-of-service. An attacker could leverage this vulnerability to corrupt memory, causing the application to crash or become unresponsive. Exploitation of this issue...
APSB26-41 : Security update available for Adobe DNG SDK
Adobe has released an update for the Adobe DNG Software Development Kit SDK for Windows and macOS. This update resolves important vulnerabilities that could lead to application denial-of-service and memory exposure...
[SECURITY] Fedora 44 Update: dtk6gui-6.7.32-5.fc44
Deepin Tool Kit DtkGui is the development graphical user interface of all C++/Qt Developer work on Deepin...
CVE-2026-39479
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Brainstorm Force OttoKit suretriggers allows Blind SQL Injection.This issue affects OttoKit: from n/a through = 1.1.20...