EUVD-2018-0697

Malware in sbrugna...

Fedora 44 : mirrorlist-server / rust-maxminddb / rust-protobuf / etc (2025-41d833fe83)

The remote Fedora 44 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-41d833fe83 advisory. - Update mirrorlist-server to version 3.0.8. - Update the maxminddb crate to version 0.26.0. - Update the protobuf and protobuf-codegen crates to version...

Linux Distros Unpatched Vulnerability : CVE-2014-3152

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer underflow in the LCodeGen::PrepareKeyedOperand function in arm/lithium-codegen-arm.cc in Google V8 before 3.25.28.16, as used in Google Chrome before...

@toptal/davinci (>=22.0.4-alpha-trn-4622-add-graphql-codegen-extensions-to-graphql-codegen-aa781dd4.0 <=22.0.179), @toptal/davinci-graphql-codegen (>=1.0.1-alpha-trn-4622-add-graphql-codegen-extensions-to-graphql-codegen-aa781dd4.4 <=5.0.6-alpha-rspack-for-dev-server-b4a1143c.32) potentially affected by unknown CVE via @toptal/davinci-graphql-codegen-extensions (>=1.0.3-alpha-trn-4622-add-graphql-codegen-extensions-to-graphql-codegen-aa781dd4.124 <=1.0.6-alpha-update-lerna-2-e115285d.63)

@toptal/davinci-graphql-codegen-extensions NPM version =1.0.3-alpha-trn-4622-add-graphql-codegen-extensions-to-graphql-codegen-aa781dd4.124, =22.0.4-alpha-trn-4622-add-graphql-codegen-extensions-to-graphql-codegen-aa781dd4.0,...

Malicious code in @toptal/davinci-graphql-codegen-extensions (npm)

The package communicates with a domain associated with malicious activity...

DEBIAN-CVE-2025-7207

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

UBUNTU-CVE-2025-7207

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

Amplify Codegen UI 安全漏洞

Amplify Codegen UI is an AWS Amplify open source React component generated for use in the AWS Amplify project. A security vulnerability exists in Amplify Codegen UI that stems from a lack of input validation for AWS Amplify Studio UI component property expressions, which could lead to the executi...

anti-debugging (=0.0.0), capcom0 (=0.1.1) +9 more potentially affected by CVE-2024-58253 via obfstr (>=0.1.1 <=0.3.0)

obfstr CARGO version =0.1.1, =0.7.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =1.0.3, =0.1.0, =0.6.0, =0.6.0, =0.11.0 Source cves: CVE-2024-58253 Source advisory: OSV:GHSA-V2P5-Q653-9J99...

CVE-2022-24881

Ballcat Codegen provides the function of online editing code to generate templates. In versions prior to 1.0.0.beta.2, attackers can implement remote code execution through malicious code injection of the template engine. This happens because Velocity and freemarker templates are introduced but...

Malicious code in azure-sdk-for-java-codegen (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d80272d9c808f50bcde1ac09ec61a64d13c6151cb5ce8724af88330aaa8a0cb3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

io.github.openfeign.querydsl:querydsl-jpa-codegen (>=5.0.1 <=5.6), io.github.zzagtung:querydsl-jpa-postgres-json (=0.1.1) potentially affected by CVE-2024-49203 via io.github.openfeign.querydsl:querydsl-jpa (>=5.0.1 <=5.6)

io.github.openfeign.querydsl:querydsl-jpa MAVEN version =5.0.1, =5.0.1, =5.6 - io.github.zzagtung:querydsl-jpa-postgres-json =0.1.1 Source cves: CVE-2024-49203 Source advisory: OSV:GHSA-6Q3Q-6V5J-H6VG...

[SECURITY] Fedora 40 Update: rust-tonic-build-0.12.3-1.fc40

Codegen module of tonic gRPC implementation...

[SECURITY] Fedora 39 Update: rust-tonic-build-0.12.3-1.fc39

Codegen module of tonic gRPC implementation...

Malicious code in rustc_codegen_cranelift-github-release (npm)

--- -= Per source details. Do not edit below this line.=-...

[SECURITY] Fedora 41 Update: rust-tonic-build-0.12.3-1.fc41

Codegen module of tonic gRPC implementation...

app.valuationcontrol:webservice (>=0.5.0 <=0.5.1), ba.sake:sharaf_3 (>=0.0.7 <=0.7.4) +973 more potentially affected by CVE-2024-3653 via io.undertow:undertow-core (>=2.3.0.Alpha1 <=2.3.14.Final)

io.undertow:undertow-core MAVEN version =2.3.0.Alpha1, =0.5.0, =0.0.7, =1.1.15, =1.0.6, =1.0.6, =1.0.6, =1.0.6, =1.0.6, =1.0.6, =1.0.6, =1.0.6, =1.0.6, =1.0.6, =1.0.6, =1.0.6, =1.0.31 and more Source cves: CVE-2024-3653 Source advisory: OSV:GHSA-CH7Q-GPFF-H9HP...

MAL-2024-1997 Malicious code in @realty-front/codegen (npm)

--- -= Per source details. Do not edit below this line.=-...

RHEL 8 : gimp:2.8 (RHSA-2024:0861)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0861 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox,...

aioasuswrt (>=1.1.20 <=1.3.3), aiosftp (>=0.0.1 <=0.3.0) +28 more potentially affected by CVE-2023-46445 via asyncssh (>=1.10.0 <=2.14.0)

asyncssh PYPI version =1.10.0, =1.1.20, =0.0.1, =0.6.0, =0.3.0, =1.2.1, =0.4.0, =0.1.0, =4.3.5, =0.35.0, =3.1.1, =0.6.5, =0.8.0, =2.8.1, =0.2.0, =0.1.0, =0.3.10 and more Source cves: CVE-2023-46445 Source advisory: OSV:PYSEC-2023-237...