[SECURITY] Fedora 44 Update: glow-2.1.2-1.fc44

Glow is a terminal based markdown reader designed from the ground up to bring out the beauty=E2=80=94and power=E2=80=94of the CLI. Use it to discover mark down files, read documentation directly on the command line. Glow will find local markdown files in subdirectories or a local Git repository...

Fedora 42 : glow (2026-9d0e7df23a)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-9d0e7df23a advisory. Update to version 2.1.2. This also updates some of the vendored dependencies to fix CVEs, as well as building with the latest golang to fix even mor...

Fedora 44 : glow (2026-423a143483)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-423a143483 advisory. Update to version 2.1.2. This also updates some of the vendored dependencies to fix CVEs, as well as building with the latest golang to fix even more CVEs...

Fedora 43 : glow (2026-6d67b00ef1)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-6d67b00ef1 advisory. Update to version 2.1.2. This also updates some of the vendored dependencies to fix CVEs, as well as building with the latest golang to fix even mor...

Malicious Package

Overview react-enhanced-glow is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

MAL-2025-192614 Malicious code in react-enhanced-glow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d6a21a6e0e2094ca1f9327d83a0c38da77bd3b8f8ffbad317ef4530a7d14c45 The package react-enhanced-glow was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-204477

Malicious code in react-enhanced-glow npm...

Malicious code in react-enhanced-glow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d6a21a6e0e2094ca1f9327d83a0c38da77bd3b8f8ffbad317ef4530a7d14c45 The package react-enhanced-glow was found to contain malicious code. Source: ghsa-malware...

Malicious Package

Overview react-animated-glow is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

MAL-2025-191550 Malicious code in react-animated-glow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c046e67371a339da9e3c12d108f16059eb5eed933f54d51b3429a77effdcdf8a The package react-animated-glow was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-200195

Malicious code in react-animated-glow npm...

Malicious code in react-animated-glow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c046e67371a339da9e3c12d108f16059eb5eed933f54d51b3429a77effdcdf8a The package react-animated-glow was found to contain malicious code. Source: ghsa-malware...

Malicious Package

Overview glow-admin is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

glow-2.1.1-2.1 on GA media (moderate)

glow-2.1.1-2.1 on GA media Announcement ID: openSUSE-SU-2025:15607-1 Rating: moderate Cross-References: CVE-2025-47911 CVE-2025-58190 CVSS scores: CVE-2025-47911 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2025-47911 SUSE : 6.9...

OPENSUSE-SU-2025:15607-1 glow-2.1.1-2.1 on GA media

These are all security issues fixed in the glow-2.1.1-2.1 package on the GA media of openSUSE Tumbleweed...

EUVD-2004-1820

Malware in sbrugna...

EUVD-2002-1808

Malware in sbrugna...

GHSA-8PJC-487G-W6P2 vulnerabilities

Vulnerabilities for packages: gobuster, wire-go, dapr, aactl, helm-operator, mongo-tools, nri-haproxy, prometheus, grafana-pyroscope, kubernetes-csi-driver-hostpath, mattermost, kor, plugin-barman-cloud, helm-set-status, cloud-provider-gcp-cloud-controller-manager, cluster-api-azure-controller,...

Malicious code in luma-glow-db (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 80813446edf951ac165d71e8e56c30d45881e40776615d07d104e3e40ef1f5ad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47487 Malicious code in luma-glow-db (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 80813446edf951ac165d71e8e56c30d45881e40776615d07d104e3e40ef1f5ad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...