Fedora 42 : linux-firmware (2025-ecd9a3485b)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-ecd9a3485b advisory. Upstream linux-firmware 20251111 release: rtlbt: Update RTL8922A BT USB firmware to 0x41C0C905 add firmware for mt7987 internal 2.5G ethernet phy rtw88: 8822...

EUVD-2025-180301

Malicious code in astro-photon-publish-blazar npm...

EUVD-2025-179654

Malicious code in command-blazar-node-config-phylogenetics npm...

EUVD-2025-180035

Malicious code in blazar-ganymede-nebula-bunyan npm...

EUVD-2025-180037

Malicious code in blazar-apollo-async-barnard npm...

Malicious code in reveal-md-cladistics-brane-blazar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3aba1890cc09a73e9c729e70b806349b00973870edcf90f85549e6e946745d97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-179807

Malicious code in chai-blazar-quasar-link npm...

EUVD-2025-179495

Malicious code in cross-env-vega-native-blazar npm...

EUVD-2025-179149

Malicious code in enceladus-mdx-zenobia-blazar npm...

EUVD-2025-178939

Malicious code in farout-resolvers-photon-blazar npm...

EUVD-2025-180036

Malicious code in blazar-draco-mesosphere-mineralogy npm...

Malicious code in chai-blazar-quasar-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 128176b0ea3dd4cd1df472e8b25d1a0d98e84d2b8f1a03ae9e5ad8efb29eeab1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176103

Malicious code in superposition-elara-blazar-webdriverio npm...

Malicious code in delphinus-passport-blazar-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26a974f550f97765a27cf0dd39ccf00ede03b43347eae79c644d36fcf7260c87 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-180361

Malicious code in archaeogenetics-taphonomy-blazar-singularitarianism npm...

MAL-2025-186075 Malicious code in chai-blazar-quasar-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 128176b0ea3dd4cd1df472e8b25d1a0d98e84d2b8f1a03ae9e5ad8efb29eeab1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-180033

Malicious code in blazar-pegasus-quark-grunt npm...

EUVD-2025-176034

Malicious code in technosignature-wezen-blitz-blazar npm...

EUVD-2025-176652

Malicious code in reveal-md-cladistics-brane-blazar npm...

EUVD-2025-180034

Malicious code in blazar-markdown-umbriel-filament npm...