EUVD-2025-205781

Picklescan is vulnerable to RCE through missing detection when calling numpy.f2py.crackfortran.evallength...

Picklescan is vulnerable to RCE through missing detection when calling numpy.f2py.crackfortran._eval_length

Summary Picklescan uses the numpy.f2py.crackfortran.evallength function a NumPy F2PY helper to execute arbitrary Python code during unpickling. Details Picklescan fails to detect a malicious pickle that uses the gadget numpy.f2py.crackfortran.evallength in reduce, allowing arbitrary command...

EUVD-2025-205638

Picklescan is vulnerable to RCE through missing detection when calling numpy.f2py.crackfortran.myeval...

SUSE SLES16 Security Update : binutils (SUSE-SU-2025:21195-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:21195-1 advisory. Changes in binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 a problem related to LTO vs fortran...

SUSE-SU-2025:21195-1 Security update for binutils

This update for binutils fixes the following issues: Changes in binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 a problem related to LTO vs fortran COMMON blocks. - Do not enable '-z gcs=implicit' on aarch64 for old codestreams. Update to version 2.45: New...

SUSE-SU-2025:21197-1 Security update for binutils

This update for binutils fixes the following issues: Changes in binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 a problem related to LTO vs fortran COMMON blocks. - Do not enable '-z gcs=implicit' on aarch64 for old codestreams. Update to version 2.45: New...

EUVD-2001-0225

Malware in sbrugna...

EUVD-2014-4943

Malware in sbrugna...

EUVD-2024-25950

Malicious code in bioql PyPI...

CVE-2024-28881

Uncontrolled search path for some IntelR Fortran Compiler Classic software before version 2021.13 may allow an authenticated user to potentially enable escalation of privilege via local access...

autoconf bug fix and enhancement update

An update is available for autoconf. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GNU's Autoconf is a tool for configuring source code and Makefiles. Using...

Intel oneAPI Base Toolkit < 2024.2.0 Multiple Vulnerabilities

Multiple vulnerabilities exist in Intel oneAPI Base Toolkit versions prior to 2024.2.0. See vendor advisory for more details. - Uncontrolled search path for some Intel® Fortran Compiler Classic software before version 2021.13 may allow an authenticated user to potentially enable escalation of...

CVE-2024-28881

Uncontrolled search path for some IntelR Fortran Compiler Classic software before version 2021.13 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-28881

CVE-2024-28881 describes an uncontrolled search path issue in Intel® Fortran Compiler Classic software before 2021.13, potentially enabling privilege escalation via local access. The connected Intel advisory (INTEL-SA-01173) also notes affected products include Intel® oneAPI HPC Toolkit before 20...

CVE-2024-28881

Uncontrolled search path for some IntelR Fortran Compiler Classic software before version 2021.13 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-28881

Uncontrolled search path for some IntelR Fortran Compiler Classic software before version 2021.13 may allow an authenticated user to potentially enable escalation of privilege via local access...

Intel Fortran 代码问题漏洞

Intel Fortran is a compiler application from Intel Corporation USA. A code issue vulnerability exists in Intel Fortran versions prior to 2021.13 that stems from an uncontrolled search path. An attacker can exploit the vulnerability to elevate privileges...

Intel® Fortran Compiler Classic Software Advisory

Summary: A potential security vulnerability in some Intel® Fortran Compiler Classic software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-28881 Description: Uncontrolled search path for some...

Number withdrawn

GNU gdb is a GNU project debugger from the American GNU community. It supports debugging C, C++, Pascal, and FORTRAN programming languages. This CVE number has been withdrawn...

Fedora: Security Advisory (FEDORA-2024-60627905b6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...