722 matches found
[SECURITY] Fedora 43 Update: python3.12-3.12.13-1.fc43
Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable:...
Fedora 42 : dr_libs (2026-2350c6fd8c)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-2350c6fd8c advisory. Backport the fix for CVE-2026-29022 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has no...
MiracleLinux 8 : munge-0.5.13-3.el8_10 (AXSA:2026-219:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-219:01 advisory. MUNGE: MUNGE has a buffer overflow in message unpacking allows key leakage and credential forgery CVE-2026-25506 Tenable has extracted the preceding descripti...
SUSE-SU-2026:0627-1 Security update 5.1.2 for Multi-Linux Manager Client Tools
This update fixes the following issues: golang-github-QubitProducts-exporterexporter: - Non-customer-facing optimization around source building golang-github-lusitaniae-apacheexporter: - Build without apparmor for openSUSE Leap 16, SLES 16 or newer - Require Go 1.23 for building - Update to versi...
Security update 5.1.2 for Multi-Linux Manager Client Tools
This update fixes the following issues: golang-github-QubitProducts-exporterexporter: Non-customer-facing optimization around source building golang-github-lusitaniae-apacheexporter: Build without apparmor for openSUSE Leap 16, SLES 16 or newer Require Go 1.23 for building Update to version 1.0.1...
Oracle Linux 8 : munge (ELSA-2026-3032)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3032 advisory. - Fix CVE-2026-25506 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...
Oracle Linux 10 : munge (ELSA-2026-3033)
The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3033 advisory. 0.5.15-11 - Fix CVE-2026-25506 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...
Malicious Package
Overview @skyeng/libs is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
SUSE SLES12: libecpg6 / libecpg6-32bit / libpq5 / libpq5-32bit / postgresql / etc (SUSE-SU-2026:0197-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0197-1 advisory. Changes in postgresql18: - Fix build with uring for post SLE15 code streams. Update to 18.1: https://www.postgresql.org/about/news/p-3171/...
CVE-2025-14369
drflac, an audio decoder within the drlibs toolset, contains an integer overflow vulnerability flaw due to trusting the totalPCMFrameCount field from FLAC metadata before calculating buffer size, allowing an attacker with a specially crafted file to perform DoS against programs using the tool...
UBUNTU-CVE-2025-14369
drflac, an audio decoder within the drlibs toolset, contains an integer overflow vulnerability flaw due to trusting the totalPCMFrameCount field from FLAC metadata before calculating buffer size, allowing an attacker with a specially crafted file to perform DoS against programs using the tool...
MiracleLinux 8 : cups-filters-1.20.0-29.el8.2 (AXSA:2023-6177:04)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6177:04 advisory. cups-filters: remote code execution in cups-filters, beh CUPS backend CVE-2023-24805 Tenable has extracted the preceding description block directly from the...
MAL-2026-259 Malicious code in @riag-libs/pattern-library-react-hooks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64366b918bd4380cf8b087a445df7d86ef18b21686c577a9ed7bdd523aceac64 The package @riag-libs/pattern-library-react-hooks was found to contain malicious code. Source: ghsa-malware...
MiracleLinux 8 : lz4-1.8.3-5.el8_10 (AXSA:2025-10510:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10510:01 advisory. lz4: heap-based buffer overflow in LZ4write32 CVE-2019-17543 Tenable has extracted the preceding description block directly from the MiracleLinux security...
MiracleLinux 9 : sqlite-3.34.1-8.el9_6 (AXSA:2025-10658:01)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10658:01 advisory. sqlite: Integer Truncation in SQLite CVE-2025-6965 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...
Malicious Package
Overview spark-ar-core-libs is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in spark-ar-core-libs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1285c72e9b251b778e8914d717f3408a94460a9f9aca70a65945e4c510c5651f The package spark-ar-core-libs was found to contain malicious code. Source: ghsa-malware...
MAL-2026-145 Malicious code in spark-ar-core-libs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1285c72e9b251b778e8914d717f3408a94460a9f9aca70a65945e4c510c5651f The package spark-ar-core-libs was found to contain malicious code. Source: ghsa-malware...
[SECURITY] Fedora 43 Update: dr_libs-0^20251201.877b096-1.fc43
Single-file audio decoding libraries for C/C++...
EUVD-2008-5240
Malware in sbrugna...