1425 matches found
MAL-2025-143170 Malicious code in halley-sync-colors-loopback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a315129aea4bbc0df37718edecba7ea88cb3534b2df5ef52e798db334c6e3d04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pino-loopback-uninstall-eslint-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74e158529ae4b1d9cd15ea986ffb47caae4298f787e4f49028d11d8a46692983 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ursa-loopback-start-wolf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6b25c5a49bd65dbc94fc59c560e21bfdcc8bd4f0963dc090dff5f430428d54f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in loopback-forever-polaris-middleware (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2efb4c31e93fd3c6ce23411d5d44679473acc2e6af0413baee0f7d9d42b58cb2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jabbah-nuxtjs-spica-loopback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14c6404a455bb29d3f9893290050e6e8982e6a5dbc7c9429a4f25827345da287 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in winston-ophiuchus-configstore-loopback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efca18a04a8da345e7fd1ab9586fdfb34f3f346cf16ea39fb312943602e6a7ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode
...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988696)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988696 advisory. In the Linux kernel, the following vulnerability has been resolved: rose: Fix NULL pointer dereference in rosesendframe The syzkaller reported an issue: KASAN:...
SUSE CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
EUVD-2025-37403
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
AZL-69631 CVE-2025-12464 affecting package qemu for versions less than 8.2.0-25
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
DEBIAN-CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
UBUNTU-CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
CVE-2025-12464
CVE-2025-12464 affects the QEMU e1000 network device. The root cause is a stack-based buffer overflow in the e1000_receive_iov path when processing short frames in loopback mode after padding logic was moved to net core. This can crash the QEMU host process (DoS). Public docs show fixes via SUSE/...
CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
CVE-2025-12464 Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
CVE-2025-12464 Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
Red Hat Enterprise Linux 10 安全漏洞
Red Hat Enterprise Linux 10 is a suite of Linux operating systems for enterprise users from Red Hat USA. A security vulnerability exists in Red Hat Enterprise Linux 10, which stems from the ability of the device receive code to still process short frames in loopback mode, which could result in a...
PT-2025-44674
Name of the Vulnerable Software and Affected Versions QEMU affected versions not specified Description A stack-based buffer overflow exists in the QEMU e1000 network device. The issue is due to the device’s receive code still processing short frames in loopback mode, despite the padding code bein...