Malicious code in spr-svg-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9a0110f4b8f50e4633d5a315a6d446989ffe4e78d529a0d9aaa01a59d28229d4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3059 Malicious code in fitbit-css-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6212daf71fae3c165b5999556ea9f8e25fb08b5d0e5beb46b543b50ddf56c46b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in fitbit-css-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6212daf71fae3c165b5999556ea9f8e25fb08b5d0e5beb46b543b50ddf56c46b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in lx-cockpit-components-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 87f911bdccde93661ec10bace02fa2c48d01a185ea3feaa9b23d92769647cb96 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4431 Malicious code in lx-cockpit-components-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 87f911bdccde93661ec10bace02fa2c48d01a185ea3feaa9b23d92769647cb96 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1500 Malicious code in bender-event-definition-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 34653c1ba22351b2fe72571bdf5c06c7131816a2112c3281e6f56ae78bcd6feb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in bender-event-definition-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 34653c1ba22351b2fe72571bdf5c06c7131816a2112c3281e6f56ae78bcd6feb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Important: Red Hat Security Advisory: grub2, mokutil, shim, and shim-unsigned-x64 security update

An update for grub2, mokutil, shim, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

grub2: Crafted PNG image may lead to out-of-bound write during huffman table handling

A flaw was found in grub2 when handling a PNG image header. When decoding the data contained in the Huffman table at the PNG file header, an out-of-bounds write may happen on grub's heap...

Important: Red Hat Security Advisory: grub2, mokutil, shim, and shim-unsigned-x64 security update

An update for grub2, mokutil, shim, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

grub2, mokutil, shim, and shim-unsigned-x64 security update

An update is available for shim, mokutil. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The grub2 packages provide version 2 of the Grand Unified Boot Loader...

RLSA-2022:5095 Important: grub2, mokutil, shim, and shim-unsigned-x64 security update

The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. The shim package contains a...

grub2, mokutil, shim, and shim-unsigned-x64 security update

An update is available for grub2, shim, shim-unsigned-x64, mokutil. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The grub2 packages provide version 2 of the...

ALSA-2022:5099 Important: grub2, mokutil, shim, and shim-unsigned-x64 security update

The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. The shim package contains a...

Important: grub2, mokutil, shim, and shim-unsigned-x64 security update

The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. The shim package contains a...

CVE-2022-20182

CVE-2022-20182 concerns the Android kernel component handle_ramdump inside pixel_loader.c. The vulnerability arises from a missing permission check, enabling creation of a ramdump of non-secure memory and potentially leading to local information disclosure with SYSTEM privileges required. Exploit...

PT-2022-14412 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a missing permission check in the handle ramdump function of pixel loader.c, which could allow the creation of a ramdump of non-secure memory. This may lead to local information disclosure,...

Researchers Detail PureCrypter Loader Cyber Criminals Using to Distribute Malware

Cybersecurity researchers have detailed the workings of a fully-featured malware loader dubbed PureCrypter that's being purchased by cyber criminals to deliver remote access trojans RATs and information stealers. "The loader is a .NET executable obfuscated with SmartAssembly and makes use of...

DEBIAN-CVE-2022-30790

Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552...

DEBIAN-CVE-2022-30552

Das U-Boot 2022.01 has a Buffer Overflow...