Vulnlab

It is an offensive tool for learning and documentation. This rep...

colander

This is a Python library for deserialization and validation of data structures composed of strings, mappings, and lists. It is a package that can be used to serialize an arbitrary data structure to a data structure composed of strings, mappings, and lists, and to deserialize and validate a data...

CLSA-2025-1756482270 kernel: Fix of CVE-2024-2201

spec: up spec/misc to 1160.136.1, spectre mitigation is off by default - hugetlb, mempolicy: fix the mbind hugetlb migration - net: atm: fix use after free in lecsend - net: atlantic: fix aqvec index out of range error - block: initialize flush request via blkmqrqctxinit - ALSA: usb-audio: Fix a...

SUSE CVE-2022-50337

In the Linux kernel, the following vulnerability has been resolved: ocxl: fix pci device refcount leak when calling getfunction0 getfunction0 calls pcigetdomainbusandslot, as comment says, it returns a pci device with refcount increment, so after using it, pcidevput needs be called. Get the devic...

Security update for expat

This update for expat fixes the following issues: expat was updated to version 2.7.1: Bug fixes: Restore event pointer behavior from Expat 2.6.4 that the fix to CVE-2024-8176 changed in 2.7.0; affected API functions are: - XMLGetCurrentByteCount - XMLGetCurrentByteIndex - XMLGetCurrentColumnNumbe...

ECHO-36F4-D374-D212

Bulletin has no description...

metasploit-framework

This repository is an offensive tool for Metasploit Framework. It is a collection of files and workflows used to build and test the Metasploit Framework, a penetration testing tool. The repository contains various templates for reporting issues, suggesting new features, and submitting pull...

Spring Authorization Server moving to Spring Security 7.0

Spring Authorization Server has come a long way since 1.0 was officially released in November 2022. Starting as a project separate from Spring Security, has allowed it to iterate quickly on feature development and ultimately grow a rich feature set for building OAuth2 Authorization Servers. It ha...

MINI-RV5P-775M-FG99

Bulletin has no description...

[SECURITY] Fedora 43 Update: containers-common-0.64.2-1.fc43

This package contains common configuration files and documentation for contai ner tools ecosystem, such as Podman, Buildah and Skopeo. It is required because the most of configuration files and docs come from pro jects which are vendored into Podman, Buildah, Skopeo, etc. but they are not packag ...

[SECURITY] Fedora 42 Update: containers-common-0.64.2-1.fc42

This package contains common configuration files and documentation for contai ner tools ecosystem, such as Podman, Buildah and Skopeo. It is required because the most of configuration files and docs come from pro jects which are vendored into Podman, Buildah, Skopeo, etc. but they are not packag ...

CLSA-2025-1757409276 mpfr: Fix of CVE-2014-9474

CVE-2014-9474: Fix of a buffer overflow due to incorrect GMP documentation for mpnsetstr...

[SECURITY] Fedora 41 Update: containers-common-0.64.2-1.fc41

This package contains common configuration files and documentation for contai ner tools ecosystem, such as Podman, Buildah and Skopeo. It is required because the most of configuration files and docs come from pro jects which are vendored into Podman, Buildah, Skopeo, etc. but they are not packag ...

Unbreakable Enterprise kernel security update

5.4.17-2136.347.6.1 - x86/vmscape: Warn when STIBP is disabled with SMT Pawan Gupta Orabug: 38343661 - x86/bugs: Move cpubugssmtupdate down Pawan Gupta Orabug: 38343661 - x86/vmscape: Enable the mitigation Pawan Gupta Orabug: 38343661 - x86/vmscape: Add conditional IBPB mitigation Pawan Gupta...

Unbreakable Enterprise kernel security update

5.15.0-312.187.5.1 - x86/vmscape: Warn when STIBP is disabled with SMT Pawan Gupta Orabug: 38343660 - x86/bugs: Move cpubugssmtupdate down Pawan Gupta Orabug: 38343660 - x86/vmscape: Enable the mitigation Pawan Gupta Orabug: 38343660 - x86/vmscape: Add conditional IBPB mitigation Pawan Gupta...

Malicious code in opencv-doc-zh (npm)

The package opencv-doc-zh was found to contain malicious code...

MAL-2025-45666 Malicious code in pytorch-doc-zh (npm)

The package pytorch-doc-zh was found to contain malicious code...

CVE-2025-9785

PaperCut Print Deploy is an optional component that integrates with PaperCut NG/MF which simplifies printer deployment and management. When the component is deployed to an environment, the customer has an option to configure the system to use a self-signed certificate. If the customer does not...

CVE-2025-9785

PaperCut Print Deploy is an optional component that integrates with PaperCut NG/MF which simplifies printer deployment and management. When the component is deployed to an environment, the customer has an option to configure the system to use a self-signed certificate. If the customer does not...

PaperCut Print Deploy 安全漏洞

PaperCut Print Deploy is a print queue deployment component from PaperCut Australia. A security vulnerability exists in PaperCut Print Deploy that stems from insufficient documentation of SSL configuration, which could lead to a man-in-the-middle attack...