Malicious code in array-empty-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9923e27ee77980880cfc13a3c78c4903c58bed58f9257ac0407d57841fcc7853 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

openjdk: Enhance array handling (Oracle CPU 2025-01)

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to Oracle Java SE accessible. This vulnerability can be...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-56595)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56595 advisory. - In the Linux kernel, the following vulnerability has been resolved: jfs: add a check to prevent array-...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-56598)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56598 advisory. - In the Linux kernel, the following vulnerability has been resolved: jfs: array-index-out-of-bounds fix in...

Linux Distros Unpatched Vulnerability : CVE-2023-52799

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: fix array-index-out-of-bounds in dbFindLeaf Currently while searching for dmtreet for sufficient free blocks there is an array out of bounds while getting...

Azure Linux 3.0 Security Update: kernel (CVE-2024-53156)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53156 advisory. - In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: add range check for...

jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree

...

jfs: fix array-index-out-of-bounds in jfs_readdir

...

jfs: array-index-out-of-bounds fix in dtReadFirst

...

SUSE CVE-2024-58083

In the Linux kernel, the following vulnerability has been resolved: KVM: Explicitly verify target vCPU is online in kvmgetvcpu Explicitly verify the target vCPU is fully online prior to clamping the index in kvmgetvcpu. If the index is "bad", the nospec clamping will generate '0', i.e. KVM will...

UBUNTU-CVE-2024-58083

In the Linux kernel, the following vulnerability has been resolved: KVM: Explicitly verify target vCPU is online in kvmgetvcpu Explicitly verify the target vCPU is fully online prior to clamping the index in kvmgetvcpu. If the index is "bad", the nospec clamping will generate '0', i.e. KVM will...

Linux Distros Unpatched Vulnerability : CVE-2025-21680

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: pktgen: Avoid out-of-bounds access in getimixentries Passing a sufficient amount of imix...

Linux Distros Unpatched Vulnerability : CVE-2024-56598

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: jfs: array-index-out-of-bounds fix in dtReadFirst The value of stbl can be sometimes out of...

Linux Distros Unpatched Vulnerability : CVE-2024-49930

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: ath11k: fix array out-of-bound access in SoC stats Currently, the ath11ksocdpstats::halreoerror array is defined with a maximum size of DPREODSTRINGMAX...

Linux Distros Unpatched Vulnerability : CVE-2024-49971

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Increase array size of dummyboolean WHY dml2coresharedmodesupport and...

Linux Distros Unpatched Vulnerability : CVE-2025-21785

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array The loop that detects/populates cache information already has a bounds check on the array size bu...

Linux Distros Unpatched Vulnerability : CVE-2024-52333

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an...

Vulnerability of the development, debugging, and optimization tools for FPGA applications. The Intel oneAPI DPC++/C++ compiler’s support package is vulnerable due to an uncontrolled search path element, allowing attackers to exploit this vulnerability to gain enhanced privileges.

The vulnerability of the FPGA Support Package for the Intel oneAPI DPC++/C++ Compiler relates to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

Linux Distros Unpatched Vulnerability : CVE-2024-27042

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdgpu: Fix potential out-of-bounds access in 'amdgpudiscoveryregbaseinit' The issue arises when the array 'adev-vcn.vcnconfig' is accessed before checking ...

Linux Distros Unpatched Vulnerability : CVE-2024-46859

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses The panasonic laptop code in various places uses the SINF array with index values of 0 -...