Fedora: Security Advisory (FEDORA-2023-7abdd861d6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 39 : golang-github-mailru-easyjson (2023-7abdd861d6)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-7abdd861d6 advisory. Automatic update for golang-github-mailru-easyjson-0.7.7-1.fc39. Changelog Mon Jul 10 2023 Mikel Olasagasti Uranga - 0.7.7-1 - Update to 0.7.7 - Closes...

Malicious Package

Overview ul-mailru is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

Malicious code in ul-mailru (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c4ffb34853ca2aed2129272732bcaa389eb9243a502f86a14ddd4cd744d9827 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6766 Malicious code in ul-mailru (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c4ffb34853ca2aed2129272732bcaa389eb9243a502f86a14ddd4cd744d9827 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Fedora: Security Advisory for golang-github-mailru-easyjson (FEDORA-2022-ea8f4e232d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 36 Update: golang-github-mailru-easyjson-0.7.6-6.fc36

Package Easyjson provides a fast and easy way to marshal/unmarshal Go structs to/from JSON without the use of reflection. In performance tests, easyjson outperforms the standard encoding/json package by a factor of 4-5x, and other JSON encoding packages by a factor of 2-3x. Easyjson aims to keep...

Fedora: Security Advisory for golang-github-mailru-easyjson (FEDORA-2022-3969b64d4b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 35 Update: golang-github-mailru-easyjson-0.7.6-5.fc35

Package Easyjson provides a fast and easy way to marshal/unmarshal Go structs to/from JSON without the use of reflection. In performance tests, easyjson outperforms the standard encoding/json package by a factor of 4-5x, and other JSON encoding packages by a factor of 2-3x. Easyjson aims to keep...

Fedora: Security Advisory for golang-github-mailru-easyjson (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 36 Update: golang-github-mailru-easyjson-0.7.6-5.fc36

Package Easyjson provides a fast and easy way to marshal/unmarshal Go structs to/from JSON without the use of reflection. In performance tests, easyjson outperforms the standard encoding/json package by a factor of 4-5x, and other JSON encoding packages by a factor of 2-3x. Easyjson aims to keep...

Malicious code in mailru-auth-gate (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a4931b2764b279ed60d329913f78b0aa1f1b8b9c9536131bd23cc5abdb3a88ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4458 Malicious code in mailru-auth-gate (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a4931b2764b279ed60d329913f78b0aa1f1b8b9c9536131bd23cc5abdb3a88ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in mailru-toolkit-lego-bundle (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ad7f34dc30e8c7b2d7ac5ce792161ffaa94305473c6cbfc016f30ff1d89916b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4459 Malicious code in mailru-toolkit-lego-bundle (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ad7f34dc30e8c7b2d7ac5ce792161ffaa94305473c6cbfc016f30ff1d89916b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Security update for rclone (moderate)

openSUSE Security Update: Security update for rclone Announcement ID: openSUSE-SU-2020:2168-1 Rating: moderate References: 1179005 Cross-References: CVE-2020-28924 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update fo...

openSUSE Security Update : rclone (openSUSE-2020-2035)

This update for rclone fixes the following issues : rclone was updated to version 1.53.3 : - Bug Fixes - Fix incorrect use of math/rand instead of crypto/rand CVE-2020-28924 boo1179005 Nick Craig-Wood - Check https://github.com/rclone/passwordcheck for a tool check for weak passwords generated by...

openSUSE Security Update : rclone (openSUSE-2020-2008)

This update for rclone fixes the following issues : rclone was updated to version 1.53.3 : - Bug Fixes - Fix incorrect use of math/rand instead of crypto/rand CVE-2020-28924 boo1179005 Nick Craig-Wood - Check https://github.com/rclone/passwordcheck for a tool check for weak passwords generated by...

Security update for rclone (moderate)

openSUSE Security Update: Security update for rclone Announcement ID: openSUSE-SU-2020:2035-1 Rating: moderate References: 1179005 Cross-References: CVE-2020-28924 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for rclone...

Mail.ru: Path traversal, SSTI and RCE on a MailRu acquisition

Unpatched CVE-2019-3396 and few more in publicly accessible Atlassian Confluence instance in ESForce domain...