744 matches found
SUSE CVE-2026-46156
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix potential ADE in loongsongpufixupdmahang The switch case in loongsongpufixupdmahang may not DC2 or DC3, and readlcrtcreg will access with random address, because the "device" is from "base+PCIDEVICEID", "base" is...
CVE-2026-46156
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix potential ADE in loongsongpufixupdmahang The switch case in loongsongpufixupdmahang may not DC2 or DC3, and readlcrtcreg will access with random address, because the "device" is from "base+PCIDEVICEID", "base" is...
UBUNTU-CVE-2026-46156
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix potential ADE in loongsongpufixupdmahang The switch case in loongsongpufixupdmahang may not DC2 or DC3, and readlcrtcreg will access with random address, because the "device" is from "base+PCIDEVICEID", "base" is...
EUVD-2026-32783
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix potential ADE in loongsongpufixupdmahang The switch case in loongsongpufixupdmahang may not DC2 or DC3, and readlcrtcreg will access with random address, because the "device" is from "base+PCIDEVICEID", "base" is...
CVE-2026-46156
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix potential ADE in loongsongpufixupdmahang The switch case in loongsongpufixupdmahang may not DC2 or DC3, and readlcrtcreg will access with random address, because the "device" is from "base+PCIDEVICEID", "base" is...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enabling exception fixup for specific ADE subcodes This patch enables the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...
EUVD-2025-208844
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...
UBUNTU-CVE-2025-71270
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...
CVE-2025-71270 LoongArch: Enable exception fixup for specific ADE subcode
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...
CVE-2025-71270
CVE-2025-71270 concerns LoongArch Linux kernel: the fix enables exception handling for BPF memory accesses in JIT-compiled code. Specifically, do_ade() now handles EX_TYPE_BPF memory access exceptions during BPF_PROBE_MEM* operations by invoking the common fixup routine, stabilizing recoverable m...
@aadarshjr/reweb-js (>=1.0.7 <=1.0.17), @acentswap/ace-core-trial (>=10.4.0 <=10.7.0) +869 more potentially affected by CVE-2026-27903 via minimatch (>=5.0.0 <=5.1.7)
minimatch NPM version =5.0.0, =1.0.7, =10.4.0, =9.0.0, =10.0.0, =10.0.0, =10.5.0, =10.4.0, =0.4.13, =2.3.0, =2.3.0, =2.2.1, =2.2.1, =2.2.2 - @aid-on/aidify =0.1.2 and more Source cves: CVE-2026-27903 Source advisory: SNYK:JS-MINIMATCH-15353389...
CVE-2025-49344
Cross-Site Request Forgery CSRF vulnerability in reneade SensitiveTagCloud sensitive-tag-cloud allows Stored XSS.This issue affects SensitiveTagCloud: from n/a through = 1.4.1...
EUVD-2025-205882
Cross-Site Request Forgery CSRF vulnerability in Rene Ade SensitiveTagCloud allows Stored XSS.This issue affects SensitiveTagCloud: from n/a through 1.4.1...
PT-2025-54277
Name of the Vulnerable Software and Affected Versions SensitiveTagCloud versions through 1.4.1 Description A Cross-Site Request Forgery CSRF issue exists in SensitiveTagCloud, which also allows for Stored Cross-Site Scripting XSS. This allows an attacker to potentially perform actions on behalf o...
Malicious code in ade-tiwul5-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c25212e87e88f94a028b4e55e120315ea25f10f35c766e7e1a20dc6861804237 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ade-martabak38-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29e04003d86ed040cc9fda1c0620a53189d0fced83280675e8007974a34e5539 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ade-kupat38-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b180f8ef83ca3f0e8c29beba75fe8df90aa91a7af2705a24d36d82aee29d5bcb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ade-lutis67-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1363b392447c5c883eb0ddf3d86a81b3a3ec81df09731f01b49983ac94f59905 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ade-kue60-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c378b919273d88722d27884c2a20121398d92b0262aec9ee93d149111a4eea30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-131927 Malicious code in ade-tahu80-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cab9354f76ded953e150f896e21a0e53d838ed91ba8b1ede934f7b9aea13996 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...