173 matches found
MAL-2025-109411 Malicious code in suspicious_canid_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 468229d2368c6a3890b19d2e601e188450072131764937c0725db7d1f68edbc0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-89325 Malicious code in original_swallow_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e465ca4b3531711006f963613a8f7b92d747ca236b019a1d2a2d8ad64ac6fb19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in useful_heron_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e92e98cf1f220c1019da909312adc479921e26237e6489bc930f2638078861e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-91473 Malicious code in umi-menjes40-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7d2c925d399c356347edf41ea5309fedfa24955b44384a09dbba7fcbe9ef932 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-74112 Malicious code in lina-bakwan61-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa0708adf6918f85adaef90523197d7829957389876bb526d41bda1cd4f2d129 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in joni-sroto65-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09f71f83f9ca71ec4148b24f2ef22e99572c563bbbbc1fc8f050adddc254ce34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-75023 Malicious code in putri-mieaceh37-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4289d77546d40bece8610d75fb5a974e25f9fcd9a6d300054330c6958ad0e65c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nana-tiwul33-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2687da5aed6ad4f04ea79cdbd57a9de1e27903e17684fc23d5a9e463aa299bb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in maya-oncom87-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cf4abb04ff002cffb6f1a6371713d0753829d704829f77140169c72850db659 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tuti-nasisayur53-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d745f1c5c64835cf61dbd366e8f4ed21fc40f6808b765afc48763284966fc7d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-64630 Malicious code in ogi-lapis36-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c56dbcbd9dc33fc8a25fbad97b8cad45930f01426351411e1fab95399541beda This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-60404 Malicious code in evil_stork_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efe6db8816861d9bdff475602f3f2af057dc2f772a20a05f03534cb8e02bd087 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in wati-rangginang79-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36aaed81450c9615fe5730770c358482bd960128bdbbdf303b84723602c2daf0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-55766 Malicious code in developing_ermine_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93c3b89cda8607982f093ec15166a03b212286de59599293445d3811f8b8b7a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-57564 Malicious code in maximum_primate_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e45ad5d79123dde8ef150a36ddf503094da0cf7456adad9eea2cd24db3fee09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-50583 Malicious code in udin-nasisayur48-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53ebad8b3123cd3179925f4c81772819a6d92fced107adf912859808049e361f The package udin-nasisayur48-breki was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that...
SUSE-SU-2025:20979-1 Security update for kernel-livepatch-MICRO-6-0_Update_11
This update for kernel-livepatch-MICRO-6-0Update11 fixes the following issues: - CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631 - CVE-2025-38678: nftables: reject duplicate device on updates bsc1249534...
SUSE-SU-2025:20889-1 Security update for kernel-livepatch-MICRO-6-0_Update_10
This update for kernel-livepatch-MICRO-6-0Update10 fixes the following issues: - CVE-2025-38566: sunrpc: fix handling of server side tls alerts bsc1248376 - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns bsc1248673 - CVE-2025-38678: netfilter: nftables:...
SUSE-SU-2025:20908-1 Security update for kernel-livepatch-MICRO-6-0_Update_10
This update for kernel-livepatch-MICRO-6-0Update10 fixes the following issues: - CVE-2025-38566: sunrpc: fix handling of server side tls alerts bsc1248376 - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns bsc1248673 - CVE-2025-38678: netfilter: nftables:...
Security update for kernel-livepatch-MICRO-6-0_Update_6
This update for kernel-livepatch-MICRO-6-0Update6 fixes the following issues: CVE-2025-38206: exfat: fix double free in delayedfree bsc1246075 CVE-2025-38396: fs: export anoninodemakesecureinode and fix secretmem LSM bypass bsc1247158 CVE-2025-38471: kernel: tls: always refresh the queue when...