1446 matches found
MAL-2025-144569 Malicious code in loopback-uninstall-europa-vulcan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4244f6505f7c45e72bf30aca99770c0cc5832f3159ed307e19d993b30c5af9d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144547 Malicious code in loopback-firebase-postgres-luna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2789696425e4ec276c93faea29470a11265e41a4117bcdbc14f88a208240a63e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149711 Malicious code in xerxes-nodemon-test-loopback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 191a6afdd1eee981950f29cad59759e49c40cd8ef34c6d81b52395578bd2f617 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141158 Malicious code in corvus-loopback-yildun-standard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6529875bab3e3c2ea80662f8dd0237daf2d1c13aca1fa24ecbfe0e6a13e213d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143951 Malicious code in jovian-loopback-terser-webpack-plugin-protractor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b260282c7f1867e1238bd604cf0bbcfd10833a0a3d62ed9c36ba1dcae09ca209 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140977 Malicious code in commitlint-dependencies-loopback-proxima (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0aef012a555af886c0bacf11d142271509bea1aa08ebcf5f1b0cc1c4e895b26d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144550 Malicious code in loopback-frontend-prettier-plugin-markdown-spectron (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76ff5e2656ce3b451ff360f78a67acd91fc9c21a7247fe942f1717f1b59d72de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode
...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988696)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988696 advisory. In the Linux kernel, the following vulnerability has been resolved: rose: Fix NULL pointer dereference in rosesendframe The syzkaller reported an issue: KASAN:...
SUSE CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
EUVD-2025-37403
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
DEBIAN-CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
AZL-69631 CVE-2025-12464 affecting package qemu for versions less than 8.2.0-25
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
UBUNTU-CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
CVE-2025-12464
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
CVE-2025-12464 Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
CVE-2025-12464 Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode
A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...
CVE-2025-12464
CVE-2025-12464 affects the QEMU e1000 network device. The root cause is a stack-based buffer overflow in the e1000_receive_iov path when processing short frames in loopback mode after padding logic was moved to net core. This can crash the QEMU host process (DoS). Public docs show fixes via SUSE/...
Red Hat Enterprise Linux 10 安全漏洞
Red Hat Enterprise Linux 10 is a suite of Linux operating systems for enterprise users from Red Hat USA. A security vulnerability exists in Red Hat Enterprise Linux 10, which stems from the ability of the device receive code to still process short frames in loopback mode, which could result in a...