155 matches found
EUVD-2025-9990
Malicious code in bioql PyPI...
EUVD-2025-20475
Malicious code in bioql PyPI...
EUVD-2025-23791
Malicious code in bioql PyPI...
EUVD-2022-7390
Malicious code in bioql PyPI...
php security update
An update is available for php. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PHP is an HTML-embedded scripting language commonly used with the Apache HTTP...
Moderate: Red Hat Security Advisory: php:8.2 security update
An update for the php:8.2 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
php: Streams HTTP wrapper does not fail for headers with invalid name and no colon
A flaw was found in PHP. This vulnerability allows applications to accept invalid headers via malformed HTTP headers missing a colon :, which may confuse applications into processing them as valid headers...
RHEL 8 : php:8.2 (RHSA-2025:15687)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:15687 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: Leak partial content of the heap...
ALSA-2025:15687 Moderate: php:8.2 security update
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: Leak partial content of the heap through heap buffer over-read in mysqlnd CVE-2024-8929 php: Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233 php: Configuring ...
CVE-2025-38712 hfsplus: don't use BUG_ON() in hfsplus_create_attributes_file()
In the Linux kernel, the following vulnerability has been resolved: hfsplus: don't use BUGON in hfspluscreateattributesfile When the volume header contains erroneous values that do not reflect the actual state of the filesystem, hfsplusfillsuper assumes that the attributes file is not yet created...
php: Fix of 3 CVEs
CVE-2025-1217: http stream wrapper: fix handling folded headers - CVE-2025-1734: http stream wrapper: fix handling headers with invalid name and no colon - CVE-2025-1861: fix http redirect location truncation...
CLSA-2025-1756483693 php: Fix of 3 CVEs
CVE-2025-1217: http stream wrapper: fix handling folded headers - CVE-2025-1734: http stream wrapper: fix handling headers with invalid name and no colon - CVE-2025-1861: fix http redirect location truncation...
Linux Distros Unpatched Vulnerability : CVE-2025-31650
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the...
CVE-2025-27072
Information disclosure while processing a packet at EAVB BE side with invalid header length...
CVE-2025-27072
Information disclosure while processing a packet at EAVB BE side with invalid header length...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that could result in information disclosure when processing packets with invalid header lengths on the BE side of the EAVB...
CVE-2025-27057
Transient DOS while handling beacon frames with invalid IE header length...
CVE-2025-27057
CVE-2025-27057 is a Qualcomm WLAN/IEEE 802.11-related issue where a transient Denial of Service can occur while processing beacon frames that contain an invalid Information Element header length. The CVE entry lists a network attack vector with no user interaction and a high availability impact, ...
CVE-2025-27057 Buffer Over-read in WLAN Host
Transient DOS while handling beacon frames with invalid IE header length...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: nvme-tcp: fixed potential memory corruption in nvmetcprecvpdu The nvmetcprecvpdu function does not check the validity of the header length. When header digests are enabled, a target might send a packet with an invalid header...