app.cash.bittycity:outie (=0.0.1), app.cash.bittycity:outie-jooq-provider (=0.0.1) +1228 more potentially affected by CVE-2026-0636 via org.bouncycastle:bcprov-jdk15to18 (>=1.74 <=1.83)

org.bouncycastle:bcprov-jdk15to18 MAVEN version =1.74, =0.0.2, =0.0.2.1, =0.1.0-M36, =0.1.0-M27, =1.0.1, =3.5.0.0, =3.5.5.3 - cn.lnkdoc.sdk:awesome-uia-alipay-sdk =3.0.0-RC1 - cn.lnkdoc.sdk:awesome-uia-alipay-sdk-solon-boot-2-starter =3.0.0-RC1 -...

Fedora 44 : asciinema / atuin / bustle / envision / glycin / greetd / helix / etc (2026-1b11ddff94)

The remote Fedora 44 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-1b11ddff94 advisory. - Update the time crate to version 0.3.47. - Update the time-macros crate to version 0.2.27. - Update the time-core crate to version 0.1.8. - Update the...

EUVD-2020-5005

Malware in sbrugna...

io.antmedia.app:ConsoleApp (>=1.2.0 <=1.5.0), io.antmedia.app:LiveApp (>=1.2.0 <=1.8.1) +8 more potentially affected by CVE-2024-35371 via io.antmedia:ant-media-server (>=1.2.0 <=2.8.2)

io.antmedia:ant-media-server MAVEN version =1.2.0, =1.2.0, =1.2.0, =1.6.1, =2.15.0, =2.10.0, =2.14.0, =2.10.0, =2.6.1, =1.9.0, =1.2.0, =1.8.1 Source cves: CVE-2024-35371 Source advisory: OSV:GHSA-2GX6-QRPP-C4P3...

Gigaset Android Update Server Hacked to Install Malware on Users' Devices

Gigaset has revealed a malware infection discovered in its Android devices was the result of a compromise of a server belonging to an external update service provider. Impacting older smartphone models — GS100, GS160, GS170, GS180, GS270 plus, and GS370 plus series — the malware took the form of...

西部数据 Western Digital G-Technology ArmorLock NVMe SSD 安全漏洞

The Western Digital G-Technology ArmorLock NVMe SSD is a firmware from Western Digital, Inc. It provides a computer storage device made with integrated circuits. A security vulnerability exists in Western Digital G-Technology ArmorLock NVMe SSDs, which stems from an insecure storage key. The...

GHSA-56PC-6JQP-XQJ8 Context isolation bypass in Electron

Impact Apps using both contextIsolation and sandbox: true are affected. Apps using both contextIsolation and nativeWindowOpen: true are affected. This is a context isolation bypass, meaning that code running in the main world context in the renderer can reach into the isolated Electron context an...

iBackDoor: High-Risk Code Hits iOS Apps

Introduction FireEye mobile researchers recently discovered potentially “backdoored” versions of an ad library embedded in thousands of iOS apps originally published in the Apple App Store. The affected versions of this library embedded functionality in iOS apps that used the library to display...