549 matches found
RHSA-2026:3012 Red Hat Security Advisory: munge security update
Bulletin has no description...
DEBIAN-CVE-2026-26967
PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...
Malicious Package
Overview json-web-sources is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
CLEANSTART-2026-WX01708 vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device
Multiple security vulnerabilities affect the clamav package. A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. See references for individual vulnerability details...
DEBIAN-CVE-2026-23051
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix drm panic null pointer when driver not support atomic When driver not support atomic, fb using plane-fb rather than plane-state-fb. cherry picked from commit 2f2a72de673513247cd6fae14e53f6c40c5841ef...
CLEANSTART-2026-LP38773 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the kube-state-metrics-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-YM28538 Prometheus Blackbox Exporter through 0
Multiple security vulnerabilities affect the prometheus-blackbox-exporter package. Prometheus Blackbox Exporter through 0. See references for individual vulnerability details...
OPENSUSE-SU-2026:10111-1 gio-branding-upstream-2.86.3-3.1 on GA media
These are all security issues fixed in the gio-branding-upstream-2.86.3-3.1 package on the GA media of openSUSE Tumbleweed...
USN-7965-1 simgear vulnerability
It was discovered that SimGear could be made to bypass the sandboxing of Nasal scripts. An attacker could possibly use this issue to execute arbitrary code...
CVE-2025-68960
Multi-thread race condition vulnerability in the video framework module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2019-12918
Quest KACE Systems Management Appliance Server Center version 9.1.317 is vulnerable to SQL injection. The affected file is softwarelibrary.php and affected parameters are order0column and order0dir...
DEBIAN-CVE-2023-54297
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix memory leak after finding block group with super blocks At excludesuperstripes, if we happen to find a block group that has super blocks mapped to it and we are on a zoned filesystem, we error out as this is not...
CVE-2025-64645
IBM Concert 1.0.0 through 2.1.0 could allow a local user to escalate their privileges due to a race condition of a symbolic link...
RHSA-2025:23648 Red Hat Security Advisory: ruby:3.3 security update
Bulletin has no description...
CVE-2025-14542
The vulnerability arises when a client fetches a tools’ JSON specification, known as a Manual, from a remote Manual Endpoint. While a provider may initially serve a benign manual e.g., one defining an HTTP tool call, earning the clients’ trust, a malicious provider can later change the manual to...
CVE-2025-64671
Improper neutralization of special elements used in a command 'command injection' in Copilot allows an unauthorized attacker to execute code locally...
CVE-2025-66324
Input verification vulnerability in the compression and decompression module. Impact: Successful exploitation of this vulnerability may affect app data integrity...
MAL-2025-192116 Malicious code in elf-stats-piney-garland-824 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 056e411aadf351523d72a2574856fd1d83cb391aa1eecdfcc64d38c50ee07af1 The package elf-stats-piney-garland-824 was found to contain malicious code...
MAL-2025-192182 Malicious code in elf-stats-twinkling-reindeer-382 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80f30c165d0ff07dad2ec7ee7f8cb4634c73ca0cd6639278c5f5b5f9e3107fb3 The package elf-stats-twinkling-reindeer-382 was found to contain malicious code...
RHSA-2025:22393 Red Hat Security Advisory: qt6-qtsvg security update
Bulletin has no description...