Insecure Default Initialization of Resource

Overview Affected versions of this package are vulnerable to Insecure Default Initialization of Resource due to DNS rebinding protection being disabled by default in HTTP-based servers using StreamableHTTPHandler or SSEHandler. An attacker can access internal resources or invoke tools exposed by...

Malicious Package

Overview check-deps-version-consistency is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and thi...

CVE-2025-52937

CVE-2025-52937 affects PointCloudLibrary (PCL) in the surface/src/3rdparty/opennurbs modules, tied to the crc32.C file. Affected condition: PCL version older than 1.14.0 or when WITH_SYSTEM_ZLIB=FALSE. The CVE description indicates a vulnerability with低 severity (CVSS v4 base score 2.0, LOW impac...

Fedora 22 : owncloud (2016-377b1a015c)

Owncloud now follows the PHP SIG direction of using a fedora autoloader to directly call the autoloaders of the PHP libraries used. In addition a %check has been added to ensure the autoloader works correctly and new dependency versions bumped to match more closely with upstream. This also update...