SUSE-SU-2025:20892-1 Security update for libxslt

This update for libxslt fixes the following issues: - CVE-2025-11731: type confusion in exsltFuncResultCompfunction leading to denial of service bsc1251979 - CVE-2025-10911: use-after-free with key data stored cross-RVT bsc1250553...

Security update for libxslt

This update for libxslt fixes the following issues: CVE-2025-11731: type confusion in exsltFuncResultCompfunction leading to denial of service bsc1251979 CVE-2025-10911: use-after-free with key data stored cross-RVT bsc1250553 Patch Instructions: To install this SUSE update use the SUSE recommend...

JLSEC-2025-92 GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information fr...

GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints e.g., use of GPGME are met, allows signature forgery via injection into the status line...

EUVD-2017-4619

Malware in sbrugna...

EUVD-2019-0065

Malware in sbrugna...

EUVD-2016-10123

Malware in sbrugna...

EUVD-2011-0042

Malware in sbrugna...

PT-2025-40973

Name of the Vulnerable Software and Affected Versions WP Reset versions prior to 2.06 Description The WP Reset plugin for WordPress is susceptible to exposure of sensitive information in all versions up to and including 2.05. This occurs through the WF Licensing::log method when debugging is...

EUVD-2023-55708

Malicious code in bioql PyPI...

EUVD-2024-37106

Malicious code in bioql PyPI...

EUVD-2023-2165

Malicious code in bioql PyPI...

EUVD-2025-13539

Malicious code in bioql PyPI...

EUVD-2023-40036

Malicious code in bioql PyPI...

PT-2025-40156

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak was identified in the dasd eckd init function within the s390/dasd module of the Linux kernel. The dasd reserve req structure is allocated before dasd vol info req, and...

Libxslt: use-after-free with key data stored cross-rvt

...

SUSE CVE-2023-53153

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Fix use after free for wext Key information in wext.connect is not reset on reconnect and can hold data from a previous connection. Reset key data to avoid that drivers or mac80211 incorrectly detect a WEP...

CVE-2023-53153

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Fix use after free for wext Key information in wext.connect is not reset on reconnect and can hold data from a previous connection. Reset key data to avoid that drivers or mac80211 incorrectly detect a WEP...

UBUNTU-CVE-2023-53153

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Fix use after free for wext Key information in wext.connect is not reset on reconnect and can hold data from a previous connection. Reset key data to avoid that drivers or mac80211 incorrectly detect a WEP...

CVE-2023-53153

The CVE-2023-53153 entry describes a Linux kernel flaw in wifi cfg80211 (wext) where key data in wext.connect isn’t reset on (re)connect, allowing data from a prior connection to linger and potentially enable use-after-free during driver/mac80211 handling. The issue is fixed in the Linux kernel b...

CVE-2023-53153 wifi: cfg80211: Fix use after free for wext

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Fix use after free for wext Key information in wext.connect is not reset on reconnect and can hold data from a previous connection. Reset key data to avoid that drivers or mac80211 incorrectly detect a WEP...