MAL-2025-1595 Malicious code in golanci-lint-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e69962c9a060f9d61253d944cc7c3573debc57053555bb4dd496618bc1b6510f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1575 Malicious code in binance-connector-ruby (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 41e39728f8654e35cb29f5b837a886f3a5a9ff0dd9b523fc1777672083ae645d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1590 Malicious code in financial-assistant (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 46f4bf26e98d1be14ad1a5014b165a3fea5ad540b4f8b496837b595c90496024 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1633 Malicious code in threads_api_sample (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bdb5d2ffbf67e52e43a62054fde29f4de7d6c5b68dd8fb80a42606e42170325f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in appauth-angular-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 42efa6fffab7cf932595ca803e264928de2ca477fd0603ac14dbe52250cd10d2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1641 Malicious code in vectorflow (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0d4420c21c045e9c7cee515f54f7da1f15a9672b0a426e26fb4d48c38e5bf1e9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in js-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cc4563d5bd3e84486a04f455708e6480fadf633778880ca2710f2778aafad55c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1628 Malicious code in sui-cctp (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 29b5e8f3f1a95ac872533b00563608aeb8925af6f289f6a5d77708faa801735e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1580 Malicious code in cosmos-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6053f00c9e4d23811647b64304eb319d346117494a434dad02865fe92a7e68e7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1625 Malicious code in sddst-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0f7f35f1a8196669f72f5a2f8e6eba15a5ed1c4effe4b6629e9375d5d2301685 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1640 Malicious code in uvp-cypress (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7aa93c8e2d917109da033013f8606bcc260c77464bde9b5aaf84271dd32f2262 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in unpnotifyserv (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ae8dc59eb2d9dac2d74fc1c76d26bee3a61d3a8519b9d61195455646c024585b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in org.cocoapods.mosaicui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 384b3b0897f982184865a927d8c1bf962c0ae8f8bf551b5ead784b9a2b80943b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in harper-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 711268fefafa8fa1f45484f2dbb4d83b7ca0c87621b54bcde26e36a9717059b9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in aem-headless-web-component (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c61c407a36f3724be9f3b666bcb222c01ec3ccc693d6ed84475acbaf185abede Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1622 Malicious code in ragbot-starter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61930f6fe18511dccf487d70fe3709eb3eda7cb06f67c342e8cd6c79553c033e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1570 Malicious code in all.en.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c395f6ed37dd1a8e6b2b15422babd65aa6c8f28456ef07e8951ac7ede5c47173 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

DEBIAN-CVE-2025-21738

In the Linux kernel, the following vulnerability has been resolved: ata: libata-sff: Ensure that we cannot write outside the allocated buffer reveliofuzzing reported that a SCSIIOCTLSENDCOMMAND ioctl with outlen set to 0xd42, SCSI command set to ATA16 PASS-THROUGH, ATA command set to ATANOP, and...

SUSE CVE-2022-49157

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix premature hw access after PCI error After a recoverable PCI error has been detected and recovered, qla driver needs to check to see if the error condition still persist and/or wait for the OS to give the resume...

SUSE CVE-2022-49504

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Inhibit aborts if external loopback plug is inserted After running a short external loopback test, when the external loopback is removed and a normal cable inserted that is directly connected to a target device, the...