19814 matches found
PT-2026-47369
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.12-1.1 Description An issue exists in the libwx network component where request threaded irq is used with a primary handler but a NULL threaded...
CVE-2026-47271
The CVE affects pam_usb prior to version 0.9.0, where out-of-memory guards in src/mem.c (xmalloc/xrealloc/xstrdup) were removed when NDEBUG is defined. With no NULL checks after allocation, NULL pointer dereferences occur, causing a crash in the PAM module loaded by sudo or login and leading to l...
Linux Distros Unpatched Vulnerability : CVE-2025-71180
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - counter: interrupt-cnt: Drop IRQFNOTHREAD flag An IRQ handler can either be IRQFNOTHREAD or acquire spinlockt, as CONFIGPROVERAWLOCKNESTING warns:...
CVE-2025-68807 block: fix race between wbt_enable_default and IO submission
In the Linux kernel, the following vulnerability has been resolved: block: fix race between wbtenabledefault and IO submission When wbtenabledefault is moved out of queue freezing in elevatorchange, it can cause the wbt inflight counter to become negative -1, leading to hung tasks in the writebac...
Malicious code in janus-robotics-optimize-css-assets-webpack-plugin-jovian (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0793378417a72050f4ae70f826a2da21befcf17f43ea0e8d0157e0268e5eedfe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nova-quantum-protractor-commitlint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42b35d5356afc081638f9e5562655901df31ef1d90eb6c13779454805d9ab8f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rocket-fomalhaut-sirius-kronos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 344f2bc058eebc6954eb5e9126619426a4e49a9670f2df757ea7590314e6af3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fork-crust-filament-kardashevscale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eacd2de681ec1c3e693bda71b1a50f3636b7bfc63e53f158913c115b5c5e658e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in leda-command-aquarius-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54b97a5b24e9f1c261d1603afc2a38bfe2203106a11ea4b09ee3b7341b64025b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in css-loader-mui-wasat-standard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e53cad67075a8415d525e1cafbcd4ef14fbb3971d78c9c0a1085f10f86fb472d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tachyon-asthenosphere-less-loader-dagda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f21c3181d7e1225e94cf6ec96aac89e6b7e7832996548331008eb289be9aa746 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in terser-isostasy-build-avior (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4033657f71986b123682d6e7e4343c3f93c872e361a0aab7fce5e54e109361a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sirius-darkmatter-lint-staged-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac68762e33089807478b221c74a906d070cef10fe0699ea1243ff9090ef6d249 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189884 Malicious code in test-meissa-stream-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e201ad4797f6c1d0adc706095b06d260333b5a1677e61717564549f492ee379a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188038 Malicious code in middleware-css-loader-eigenstate-pavo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 534a9e81e6c2402ae393adf28af59d4b379d1072ef0b71622fdc40f5080ab7e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185438 Malicious code in alphard-dynamo-antares-meteor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 548e58df085b49fb6b9511df3b11a9697aff3fa1dfec19601ea92bc5f247f34a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190417 Malicious code in yakutsk-luna-nova-triton (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1247a887e7b5c2f9fd964d4f486657e8b0b2f0cb3db19d32b6971e95515ac6f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187211 Malicious code in graviton-hapi-less-loader-electron (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bb8fb65ea2c82a7ebd036fb556fb70c2c9cb967106c4ea3b82b1936b540d8b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188975 Malicious code in pulsar-puppeteer-dagda-cosmology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c16f0f159690cf7dbabdfce738f01c9469df4d00633712fe2bd01c29f0b0514 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185671 Malicious code in authenticate-scale-analyze-book-scale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d038c7d079b519f31ce6b09657db6765d1d0007fe0b8bd295d08d7806e81e80a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...