5332 matches found
EUVD-2022-3068
Malicious code in bioql PyPI...
EUVD-2025-25135
Malicious code in bioql PyPI...
EUVD-2018-0496
Malicious code in bioql PyPI...
EUVD-2022-49682
Malicious code in bioql PyPI...
EUVD-2022-4051
Malicious code in bioql PyPI...
EUVD-2025-24814
Malicious code in bioql PyPI...
EUVD-2024-0913
Malicious code in bioql PyPI...
EUVD-2025-31586
Malicious code in bioql PyPI...
EUVD-2021-33361
Malicious code in bioql PyPI...
EUVD-2025-7066
Malicious code in bioql PyPI...
EUVD-2025-27610
Malicious code in bioql PyPI...
EUVD-2025-19068
Malicious code in bioql PyPI...
RLSA-2025:8128 Important: libsoup3 security update
Libsoup is an HTTP library implementation in C. It was originally part of a SOAP Simple Object Access Protocol implementation called Soup, but the SOAP and non-SOAP parts have now been split into separate packages. libsoup uses the Glib main loop and is designed to work well with GTK applications...
CVE-2025-11234
A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network acces...
CVE-2025-11234 Qemu-kvm: vnc websocket handshake use-after-free
A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network acces...
CVE-2025-11234
A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network acces...
CVE-2025-11234 Qemu-kvm: vnc websocket handshake use-after-free
A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network acces...
CVE-2025-11234
Summary (CVE-2025-11234) : A flaw in QEMU allows a use-after-free via the QIOChannelWebsock object during handshake when freed, enabling a network-adjacent attacker to cause denial of service on the VNC WebSocket port before authentication. Affected component is the QEMU WebSocket handshake flow;...
CVE-2025-11234
A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network acces...
SUSE CVE-2025-54289
Privilege Escalation in operations API in Canonical LXD 6.5 on multiple platforms allows attacker with read permissions to hijack terminal or console sessions and execute arbitrary commands via WebSocket connection hijacking format...