SUSE CVE-2026-46155

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...

DEBIAN-CVE-2026-31614

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in checkwsleas The bounds check uses u8 ea + nlen + 1 + vlen as the end of the EA name and value, but eadata sits at offset sizeofstruct smb2filefulleainfo = 8 from ea, not at offset 0. The...

CVE-2026-31614 smb: client: fix off-by-8 bounds check in check_wsl_eas()

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in checkwsleas The bounds check uses u8 ea + nlen + 1 + vlen as the end of the EA name and value, but eadata sits at offset sizeofstruct smb2filefulleainfo = 8 from ea, not at offset 0. The...

CVE-2026-1906

The PDF Invoices & Packing Slips for WooCommerce plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.6.0 via the wpoipsedisaveordercustomerpeppolidentifiers AJAX action due to missing capability checks and order ownership validation. This...

EUVD-2016-2032

Malware in sbrugna...

EUVD-2021-22289

Malware in sbrugna...

EUVD-2021-22290

Malware in sbrugna...

EUVD-2021-22287

Malware in sbrugna...

EUVD-2013-4585

Malware in sbrugna...

EUVD-2021-22319

Malware in sbrugna...

EUVD-2017-9786

Malware in sbrugna...

EUVD-2013-4583

Malware in sbrugna...

EUVD-2016-7515

Malware in sbrugna...

Malicious code in @zalastax/nolb-eas- (npm)

The package @zalastax/nolb-eas- was found to contain malicious code...

MAL-2025-11260 Malicious code in @zalastax/nolb-eas_ (npm)

The package @zalastax/nolb-eas was found to contain malicious code...

Malicious code in @zalastax/nolb-eas_ (npm)

The package @zalastax/nolb-eas was found to contain malicious code...

MAL-2025-11259 Malicious code in @zalastax/nolb-eas- (npm)

The package @zalastax/nolb-eas- was found to contain malicious code...

CVE-2025-38297 PM: EM: Fix potential division-by-zero error in em_compute_costs()

In the Linux kernel, the following vulnerability has been resolved: PM: EM: Fix potential division-by-zero error in emcomputecosts When the device is of a non-CPU type, tablei.performance won't be initialized in the previous eminitperformance, resulting in division by zero when calculating costs ...

CVE-2021-35655

Vulnerability in the Essbase Administration Services product of Oracle Essbase component: EAS Console. The supported versions that are affected are Prior to 11.1.2.4.046 and Prior to 21.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

CVE-2021-2350

Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...