Lucene search
K

242 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fixed the “scheduling while atomic” issue in IPsec MAC address queries. A bug involving “scheduling while atomic” was addressed in mlx5eipsecinitmacs, by replacing mlx5querymacaddress with etheraddrcopy to retrieve the...

7.5CVSS5.7AI score0.00441EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/26 6:25 a.m.16 views

Malicious code in ether-bn.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cc5567869e3d616af151887f680ef13bf23f8a19fe5978343254b921c1c7c73 Package name 'ether-bn.js' resembles the widely-used 'bn.js' big-number library, and the README directs users to install yet another name...

5.9AI score
Exploits0References2
OSV
OSV
added 2026/05/26 6:25 a.m.12 views

MAL-2026-4779 Malicious code in ether-bn.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cc5567869e3d616af151887f680ef13bf23f8a19fe5978343254b921c1c7c73 Package name 'ether-bn.js' resembles the widely-used 'bn.js' big-number library, and the README directs users to install yet another name...

5.9AI score
Exploits0References2
vulnersOsv
vulnersOsv
added 2026/05/26 6:21 a.m.5 views

ether-bn.js (>=1.4.0 <=1.4.1) potentially affected by unknown CVE via unique-id-64 (=1.0.0)

unique-id-64 NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on unique-id-64 and may be impacted: - ether-bn.js =1.4.0, =1.4.1 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4781...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-43199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5e: Fix scheduling while atomic in IPsec MAC address query Fix a scheduling while atomic bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with...

7.5CVSS7.1AI score0.00441EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/06 12:30 p.m.9 views

EUVD-2026-27762

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with etheraddrcopy to get the local MAC address directly from...

5.8AI score0.00441EPSS
Exploits0References5
NVD
NVD
added 2026/05/06 12:16 p.m.7 views

CVE-2026-43199

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with etheraddrcopy to get the local MAC address directly from...

7.5CVSS0.00441EPSS
Exploits0References4
CVE
CVE
added 2026/05/06 11:28 a.m.18 views

CVE-2026-43199

CVE-2026-43199 affects the Linux kernel net/mlx5e component. A scheduling-while-atomic bug occurred when mlx5e_ipsec_init_macs() queried hardware MAC via mlx5_query_mac_address() from an atomic context (mlx5e_ipsec_handle_event/workqueue), which can sleep. The fix uses the MAC address already pre...

7.5CVSS5.8AI score0.00441EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:14 p.m.4 views

CVE-2026-31728

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uether: Fix race between getherdisconnect and ethstop A race condition between getherdisconnect and ethstop leads to a NULL pointer dereference. Specifically, if ethstop is triggered concurrently while getherdisconne...

5.7AI score0.00089EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.5 views

CVE-2026-31728

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uether: Fix race between getherdisconnect and ethstop A race condition between getherdisconnect and ethstop leads to a NULL pointer dereference. Specifically, if ethstop is triggered concurrently while getherdisconne...

4.7CVSS5.7AI score0.00089EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/01 4:32 p.m.7 views

Malicious code in ether-account (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e807b32b64c457df7e89ee3ba1e8e25fe779ccff08b1da00800b705ff833f42e Clones of a legitimate library. During processing the private key, it's getting exfiltrated. --- Category: MALICIOUS - The campaign has clearly malicious inten...

5.9AI score
Exploits0References1
OSV
OSV
added 2026/04/01 4:32 p.m.4 views

MAL-2026-2404 Malicious code in ether-account (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e807b32b64c457df7e89ee3ba1e8e25fe779ccff08b1da00800b705ff833f42e Clones of a legitimate library. During processing the private key, it's getting exfiltrated. --- Category: MALICIOUS - The campaign has clearly malicious inten...

5.9AI score
Exploits0References1
Snyk
Snyk
added 2026/03/02 2:32 a.m.2 views

Malicious Package

Overview ether-lint is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.9AI score
Exploits0References2
SUSE Linux
SUSE Linux
added 2026/02/18 9:10 a.m.4 views

Security update for libpcap

This update for libpcap fixes the following issues: CVE-2025-11961: missing validation of provided MAC-48 address string in pcapetheraton can lead to out-of-bounds read and write bsc1255765. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

4.8CVSS5.4AI score0.00098EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/12 4:2 p.m.8 views

Malicious code in ether-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91fd63bfdad336609f23485d2ef2ac2140053efbfb31aa2bec1811be7139db95 The package ether-lint was found to contain malicious code. Source: ghsa-malware c8e14ef98aaca0dc035a27f9edd6286e29e73d16c2b4e7c98ab1afe1e4740e35 Any...

5.9AI score
Exploits0References1
OSV
OSV
added 2026/02/12 4:2 p.m.4 views

MAL-2026-941 Malicious code in ether-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91fd63bfdad336609f23485d2ef2ac2140053efbfb31aa2bec1811be7139db95 The package ether-lint was found to contain malicious code. Source: ghsa-malware c8e14ef98aaca0dc035a27f9edd6286e29e73d16c2b4e7c98ab1afe1e4740e35 Any...

5.9AI score
Exploits0References1
OSV
OSV
added 2026/01/23 12:23 p.m.5 views

OESA-2026-1207 libpcap security update

This is the official web site of tcpdump, a powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture. Security Fixes: pcapetheraton is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string...

1.9CVSS5.3AI score0.00098EPSS
Exploits0References2
OSV
OSV
added 2026/01/22 10:14 a.m.3 views

SUSE-SU-2026:20153-1 Security update for libpcap

This update for libpcap fixes the following issues: - CVE-2025-11961: missing validation of provided MAC-48 address string in pcapetheraton can lead to out-of-bounds read and write bsc1255765...

1.9CVSS5.8AI score0.00098EPSS
Exploits0References3
OSV
OSV
added 2026/01/22 10:13 a.m.5 views

OPENSUSE-SU-2026:20075-1 Security update for libpcap

This update for libpcap fixes the following issues: - CVE-2025-11961: missing validation of provided MAC-48 address string in pcapetheraton can lead to out-of-bounds read and write bsc1255765...

1.9CVSS5.8AI score0.00098EPSS
Exploits0References2
OSV
OSV
added 2026/01/16 11:59 a.m.4 views

OESA-2026-1114 libpcap security update

This is the official web site of tcpdump, a powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture. Security Fixes: pcapetheraton is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string...

1.9CVSS6.7AI score0.00098EPSS
Exploits0References2
Rows per page
Query Builder