Malicious code in eth-err (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 23c4bffe5738a8f56b76e1eee7ffcc77e32ac120dd99def47a72442f01fe492e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SUSE CVE-2024-50056

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Fix ERRPTR dereference in uvcv4l2.c Fix potential dereferencing of ERRPTR in findformatbypix and uvcv4l2enumformat. Fix the following smatch errors: drivers/usb/gadget/function/uvcv4l2.c:124 findformatbypix erro...

UBUNTU-CVE-2024-50056

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Fix ERRPTR dereference in uvcv4l2.c Fix potential dereferencing of ERRPTR in findformatbypix and uvcv4l2enumformat. Fix the following smatch errors: drivers/usb/gadget/function/uvcv4l2.c:124 findformatbypix erro...

AZL-51763 CVE-2024-49960 affecting package kernel for versions less than 5.15.182.1-1

In the Linux kernel, the following vulnerability has been resolved: ext4: fix timer use-after-free on failed mount Syzbot has found an ODEBUG bug in ext4fillsuper The deltimersync function cancels the serrreport timer, which reminds about filesystem errors daily. We should guarantee the timer is ...

CVE-2024-46819 drm/amdgpu: the warning dereferencing obj for nbio_v7_4

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: the warning dereferencing obj for nbiov74 if rasmanager obj null, don't print NBIO err data...

CVE-2024-46819 drm/amdgpu: the warning dereferencing obj for nbio_v7_4

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: the warning dereferencing obj for nbiov74 if rasmanager obj null, don't print NBIO err data...

CVE-2024-46819

CVE-2024-46819: In the Linux kernel, the drm/amdgpu path for nbio_v7_4 could dereference an obj when ras_manager.obj is null, causing a warning and potential data leakage through NBIO data. The issue has been resolved in the cited update. The description notes a fix to avoid printing NBIO error d...

DEBIAN-CVE-2024-42123

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix double free erraddr pointer warnings In amdgpuumcbadpagepollingtimeout, the amdgpuumchandlebadpages will be run many times so that double free erraddr in some special case. So set the erraddr to NULL to avoid the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the drm/amdgpu module in the amdgpuumcbadpagepollingtimeout, where amdgpuumchandlebadpages may be run...

UBUNTU-CVE-2024-36968

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix div-by-zero in l2capleflowctlinit l2capleflowctlinit can cause both div-by-zero and an integer overflow since hdev-lemtu may not fall in the valid range. Move MTU from hcidev to hciconn to validate MTU and...

SUSE CVE-2022-48709

In the Linux kernel, the following vulnerability has been resolved: ice: switch: fix potential memleak in iceaddadvrecipe When iceaddspecialwords fails, the 'rm' is not released, which will lead to a memory leak. Fix this up by going to 'errunroll' label. Compile tested only...

CVE-2023-52813 crypto: pcrypt - Fix hungtask for PADATA_RESET

In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix hungtask for PADATARESET We found a hungtask bug in testaeadveccfg as follows: INFO: task cryptomgrtest:391009 blocked for more than 120 seconds. "echo 0 /proc/sys/kernel/hungtasktimeoutsecs" disables this...

CVE-2023-52813

CVE-2023-52813 : Linux kernel crypto: pcrypt fix hungtask for PADATA_RESET. The issue was a hung task in test_aead_vec_cfg caused by padata_do_parallel returning -EBUSY when pinst->flags included PADATA_RESET, preventing aead_request_complete() and leading to a hung wait. Connected sources des...

CVE-2023-52813 crypto: pcrypt - Fix hungtask for PADATA_RESET

In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix hungtask for PADATARESET We found a hungtask bug in testaeadveccfg as follows: INFO: task cryptomgrtest:391009 blocked for more than 120 seconds. "echo 0 /proc/sys/kernel/hungtasktimeoutsecs" disables this...

Adding a new server to a switch side triggers Err-Disabled on the connected Netscaler interface.

...

Certificate trust error after updating SSL server certificate from new Intermediate or Root CA.

After updating a server SSL certificate, users are receiving certificate error "You have not chosen to trust 'DigiCert Global Root G2', the issuer of the server's security certificate.", "NET::ERRCERTAUTHORITYINVALID" or other certificate trust error...

StoreOnce and Veeam Immutability Compatibility

Challenge A backup job that targets an HPE StoreOnce Catalyst repository may display either of the following messages: In Veeam Backup & Replication 12.0, the job will fail and display the error: OSCLTERRIMMUTABLEEPOCHREQUESTEXCEEDSMAXIMUM. Err: -1817 In Veeam Backup & Replication 12.1, the job...

Citrix ADC MPX/SDX Fortville NIC Err-Disabled when LLDP Is enabled on Peer Switch/Router

If Citrix ADC is connected to a switch/router via Fortville NIC For example 10G port on MPX 8900, interface will show UP for a moment then go to Err-Disabled state. Running "show interface" command on ADC, you can find ADC Fortville NIC is in Err-Disabled State, along with TX Stall andHang counts...

CLSA-2021-1632262269 Fix of CVE: CVE-2021-34693, CVE-2021-20292, CVE-2021-28972, CVE-2021-20265, CVE-2021-32399, CVE-2014-4508, CVE-2021-3612, CVE-2021-3178, CVE-2021-37159, CVE-2021-38205, CVE-2021-3573, CVE-2021-38160

ELSCVE-666: CVE-2021-34693: can: bcm: fix infoleak in struct bcmmsghead - ELSCVE-705: CVE-2021-38160: virtioconsole: Assure used length from device is limited - ELSCVE-769: CVE-2014-4508: x8632, entry: Do syscall exit work on badsys CVE-2014-4508 - ELSCVE-844: CVE-2021-3573: Bluetooth: use...

UBUNTU-CVE-2021-36221

Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort...