MAL-2025-43014 Malicious code in @zalastax/nolb-_hyper_fun_fluentui-icon-f (npm)

The package @zalastax/nolb-hyperfunfluentui-icon-f was found to contain malicious code...

Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails

...

Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl

...

fbdev: hyperv_fb: Allow graceful removal of framebuffer

...

The provided one-time code is incorrect. Check if the backup server time is correct.

Challenge When attempting to connect to the Veeam Host Management Console, after entering the MFA TOTP code, the following error occurs: The provided one-time code is incorrect. Check if the backup server time is correct. Solution There are two potential causes for time mismatch: Cause 1:...

Linux Distros Unpatched Vulnerability : CVE-2021-21299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hyper is an open-source HTTP library for Rust crates.io. In hyper from version 0.12.0 and before versions 0.13.10 and 0.14.3 there is a vulnerability that can...

Linux Distros Unpatched Vulnerability : CVE-2023-26964

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in hyper v0.13.7. h2-0.2.4 Stream stacking occurs when the H2 component processes HTTP2 RSTSTREAM frames. As a result, the memory and CP...

Linux Distros Unpatched Vulnerability : CVE-2021-32715

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hyper is an HTTP library for rust. hyper's HTTP/1 server code had a flaw that incorrectly parses and accepts requests with a Content-Length header with a prefix...

Linux Distros Unpatched Vulnerability : CVE-2021-32714

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hyper is an HTTP library for Rust. In versions prior to 0.14.10, hyper's HTTP server and client code had a flaw that could trigger an integer overflow when...

mitmproxy binaries embed a vulnerable python-hyper/h2 dependency

mitmproxy 12.1.1 and below embed python-hyper/h2 ≤ v4.2.0, which has a gap in its HTTP/2 header validation. This enables request smuggling attacks when mitmproxy is in a configuration where it translates HTTP/2 to HTTP/1. For example, this affects reverse proxies to http:// backends. It does not...

GHSA-63CX-G855-HVV4 mitmproxy binaries embed a vulnerable python-hyper/h2 dependency

mitmproxy 12.1.1 and below embed python-hyper/h2 ≤ v4.2.0, which has a gap in its HTTP/2 header validation. This enables request smuggling attacks when mitmproxy is in a configuration where it translates HTTP/2 to HTTP/1. For example, this affects reverse proxies to http:// backends. It does not...

python-hyper h2 注入漏洞

python-hyper h2 is a Python HTTP/2 protocol implementation of Hyper open source. An injection vulnerability exists in python-hyper h2 versions prior to 4.3.0, which stems from HTTP2 request splitting and could lead to a request smuggling attack...

[SECURITY] Fedora 42 Update: rust-h2-0.4.12-1.fc42

An HTTP/2 client and server...

SUSE-SU-2025:02811-1 Security update for rust-keylime

This update for rust-keylime fixes the following issues: - Update to version 0.2.7+141: CVE-2025-58266: shlex: Fixed command injection bsc1247193 - Update to version 0.2.7+117: CVE-2023-26964: rust-keylime: hyper,h2: stream stacking when H2 processing HTTP2 RSTSTREAM frames bsc1210344...

Malicious code in @zalastax/nolb-_hyper_fun_material-ico (npm)

The package @zalastax/nolb-hyperfunmaterial-ico was found to contain malicious code...

Malicious code in @zalastax/nolb-_hyper_fun_fluentui-emoji-mr (npm)

The package @zalastax/nolb-hyperfunfluentui-emoji-mr was found to contain malicious code...

Malicious code in @zalastax/nolb-_hyper_fun_fa-s (npm)

The package @zalastax/nolb-hyperfunfa-s was found to contain malicious code...

Malicious code in @zalastax/nolb-_hyper_fun_material-ic (npm)

The package @zalastax/nolb-hyperfunmaterial-ic was found to contain malicious code...

Malicious code in @zalastax/nolb-_hyper_fun_fluentui-emoji-m (npm)

The package @zalastax/nolb-hyperfunfluentui-emoji-m was found to contain malicious code...

Malicious code in @zalastax/nolb-_hyper_fun_fa-t (npm)

The package @zalastax/nolb-hyperfunfa-t was found to contain malicious code...