236 matches found
DEBIAN-CVE-2025-68972
In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds although an "invalid armor" message is printed...
ALPINE-CVE-2025-68972
In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds although an "invalid armor" message is printed...
GnuPG: Arbitrary Code Execution
Background The GNU Privacy Guard, GnuPG, is a free replacement for the PGP suite of cryptographic software. Description A vulnerability has been discovered in GnuPG's armor parser. Impact A remote attacker could entice a user or automated system to process a specially crafted signature file,...
GLSA-202512-01 : GnuPG: Arbitrary Code Execution
The remote host is affected by the vulnerability described in GLSA-202512-01 GnuPG: Arbitrary Code Execution A vulnerability has been discovered in GnuPG's armor parser. Tenable has extracted the preceding description block directly from the Gentoo Linux security advisory. Note that Nessus has no...
EUVD-2007-4948
Malware in sbrugna...
EUVD-2019-6355
Malware in sbrugna...
EUVD-2001-0265
Malware in sbrugna...
EUVD-2018-6812
Malware in sbrugna...
EUVD-2009-2445
Malware in sbrugna...
EUVD-2018-6756
Malware in sbrugna...
EUVD-2025-12540
Malicious code in bioql PyPI...
EUVD-2022-5700
Malicious code in bioql PyPI...
EUVD-2021-33931
Malicious code in bioql PyPI...
EUVD-2024-16190
Malicious code in bioql PyPI...
EUVD-2021-33930
Malicious code in bioql PyPI...
EUVD-2023-33912
Malicious code in bioql PyPI...
EUVD-2025-29425
Malicious code in bioql PyPI...
CVE-2024-36326
CVE-2024-36326 describes a missing authorization check in AMD RomArmor that could let an attacker bypass ROMArmor protections when resuming from standby, potentially impacting confidentiality and integrity. Affected: AMD Client Processor platforms with RomArmor protection. Root cause: incomplete ...
@cedarjs/api-server (>=0.0.4 <=9.0.0-canary.1784), @cedarjs/cli (>=0.0.4 <=9.0.0-canary.1784) +49 more potentially affected by unknown CVE via @escape.tech/graphql-armor-max-depth (>=2.0.0 <=2.4.1)
@escape.tech/graphql-armor-max-depth NPM version =2.0.0, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.9.1-next.19, =0.0.4, =0.0.4, =0.0.2, =2.0.0, =2.0.6, =2.2.2, =2.19.6 and more Source cves: unknown CVE Source advisory: SNYK:JS-ESCAPETECHGRAPHQLARMORMAXDEPTH-12219956...
Allocation of Resources Without Limits or Throttling
Overview @escape.tech/graphql-armor-max-depth is a Limit the depth allowed in a GraphQL query. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the countDepth function. An attacker can cause excessive resource consumption by crafting...