276 matches found
CVE-2026-31594 PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown
In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown epfntbepcdestroy duplicates the teardown that the caller is supposed to perform later. This leads to an oops when .allowlink fails or when .droplink is performed. Th...
CVE-2026-31594
The CVE-2026-31594 issue is in the Linux kernel PCI endpoint framework (pci-epf-vntb). The root cause is a duplicate resource teardown in epf_ntb_epc_destroy(), causing an oops/kernel crash when .allow_link fails or .drop_link runs. The documented fix removes the helper and drops pci_epc_put(), t...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Prevent attempts to reclaim poisoned pages TL;DR: SGX page reclaiming involves copying page contents to secondary storage. SGX instructions do not properly handle machine checks. Nevertheless, existing SGX code will stil...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992946)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992946 advisory. In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: Deallocate EPC memory on dwpcieepinit errors If dwpcieepinit fails to perform any actio...
Malicious Package
Overview epc-booking-insights-core is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
EUVD-2025-2928
Malicious code in bioql PyPI...
EUVD-2025-7717
Malicious code in bioql PyPI...
EUVD-2025-11117
Malicious code in bioql PyPI...
EUVD-2025-9714
Malicious code in bioql PyPI...
EUVD-2025-10939
Malicious code in bioql PyPI...
EUVD-2025-4774
Malicious code in bioql PyPI...
Malicious code in epc-booking-insights-core (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f26f1426d355c19828def2e4a271d8a6d142e98732cc44dbc4b2d9f7a6667d16 Any computer that has this package installed or running should be considered...
MAL-2025-47848 Malicious code in epc-booking-insights-core (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f26f1426d355c19828def2e4a271d8a6d142e98732cc44dbc4b2d9f7a6667d16 Any computer that has this package installed or running should be considered...
Malicious code in epc-help-widget (npm)
The package epc-help-widget was found to contain malicious code...
MAL-2025-47433 Malicious code in epc-help-widget (npm)
The package epc-help-widget was found to contain malicious code...
Malicious code in epc-ui-tour (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 564b0da0b00f30ef4d3e9c7c03c624fe43365f10b3c1fa049ce0e7148373af4c The OpenSSF Package Analysis project identified 'epc-ui-tour' @ 99.99.1 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41430 Malicious code in epc-ui-tour (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 564b0da0b00f30ef4d3e9c7c03c624fe43365f10b3c1fa049ce0e7148373af4c The OpenSSF Package Analysis project identified 'epc-ui-tour' @ 99.99.1 npm as malicious. It is considered malicious because: - The package...
WordPress School Management Plugin <= 93.2.0 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by Nguyen Kim Sang in WordPress Plugin School Management versions = 93.2.0...
Malicious code in epc-node-web-client (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in @epc-libraries/driver-plan-db (npm)
The package @epc-libraries/driver-plan-db was found to contain malicious code...