584 matches found
CVE-2020-25758
An issue was discovered on D-Link DSR-250 3.17 devices. Insufficient validation of configuration file checksums could allow a remote, authenticated attacker to inject arbitrary crontab entries into saved configurations before uploading. These entries are executed as root...
Malicious code in web3-checksums (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-4264 Malicious code in web3-checksums (PyPI)
--- -= Per source details. Do not edit below this line.=-...
DEBIAN-CVE-2025-21890
In the Linux kernel, the following vulnerability has been resolved: idpf: fix checksums set in idpfrxrsc idpfrxrsc uses skbtransportoffsetskb while the transport header is not set yet. This triggers the following warning for CONFIGDEBUGNET=y builds. DEBUGNETWARNONONCE!skbtransportheaderwassetskb...
CVE-2025-21890
CVE-2025-21890 affects the Linux kernel (idpf driver). The root cause is in idpf_rx_rsc(): it uses skb_transport_offset(skb) before the transport header is set, causing incorrect checksums and triggering a CONFIG_DEBUG_NET warning. The issue has been fixed in the kernel with the referenced commit...
Linux Distros Unpatched Vulnerability : CVE-2020-16155
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The CPAN::Checksums package 2.12 for Perl does not uniquely define signed data. CVE-2020-16155 Note that Nessus relies on the presence of the package as reporte...
DEBIAN-CVE-2022-49340
In the Linux kernel, the following vulnerability has been resolved: ipgre: test csumstart instead of transport header GRE with TUNNELCSUM will apply local checksum offload on CHECKSUMPARTIAL packets. ipgrexmit must validate csumstart after an optional skbpull, else lcocsum may trigger an overflow...
Malicious code in checksums (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 865ae4dc35a7d31091697f0378c4e4f1b90d19d1160b1adbd2414c69f4192476 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1072 Malicious code in checksums (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 865ae4dc35a7d31091697f0378c4e4f1b90d19d1160b1adbd2414c69f4192476 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
The vulnerability of the rsyncd utility for transferring and synchronizing Rsync files allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the rsyncd utility for transferring and synchronizing Rsync files involves the generation of invalid tokens and checksums during the copying process. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...
SUSE CVE-2024-12086
A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...
USN-7206-1 Several security issues were fixed in rsync
Simon Scannell, Pedro Gallegos, and Jasiel Spelman discovered that rsync did not properly handle checksum lengths. An attacker could use this issue to execute arbitrary code. CVE-2024-12084 Simon Scannell, Pedro Gallegos, and Jasiel Spelman discovered that rsync compared checksums with...
CVE-2024-12086
A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...
ALPINE-CVE-2024-12086
A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...
DEBIAN-CVE-2024-12086
A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...
Huawei Lion-AL00C Stack Overflow Vulnerability
The Huawei Lion-AL00C is a smartphone from the Chinese company Huawei Huawei. The Huawei Lion-AL00C suffers from a stack overflow vulnerability that stems from a lack of sufficient checksums. An attacker could exploit the vulnerability to cause tampering of information, affecting availability...
PT-2024-10124
Name of the Vulnerable Software and Affected Versions rsync affected versions not specified Description The issue is related to rsync, a software used for synchronizing files across different systems. It allows a server to enumerate the contents of an arbitrary file from the client's machine by...
Malicious code in middleware-flexible-checksums (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-9708 Malicious code in middleware-flexible-checksums (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2024-40962
A NULL pointer dereference was found in the btrfszonefinishendio function in the Linux Kernel during the execution of test-case btrfs/167 on emulated zoned devices. This issue stems from missing checksum lists for NOCOW writes in zoned mode, as revealed by an assertion failure. The problem occurs...