MAL-2025-9826 Malicious code in @zalastax/nolb-_bif (npm)

The package @zalastax/nolb-bif was found to contain malicious code...

CVE-2024-47706

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

Medium: virtuoso-opensource

Issue Overview: An issue in the libcmalloc component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements. CVE-2023-31607 An issue in the dfeunitcolloci component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Deni...

bif-support.dk Cross Site Scripting vulnerability OBB-3504931

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

UBUNTU-CVE-2023-31616

An issue in the bifmod component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

PT-2023-9523 · Openlink +4 · Openlink Virtuoso-Opensource +4

Name of the Vulnerable Software and Affected Versions: openlink virtuoso-opensource version 7.2.9 Description: The issue in the bif mod component of openlink virtuoso-opensource is related to the improper neutralization of special elements used in SQL commands. This can allow a remote attacker to...

zeek -- potential DoS vulnerabilities

Tim Wojtulewicz of Corelight reports: Receiving DNS responses from async DNS requests via the lookupaddr, etc BIF methods with the TTL set to zero could cause the DNS manager to eventually stop being able to make new requests. Specially-crafted FTP packets with excessively long usernames,...