DEBIAN-CVE-2025-21664

In the Linux kernel, the following vulnerability has been resolved: dm thin: make getfirstthin use rcu-safe list first function The documentation in rculist.h explains the absence of listemptyrcu and cautions programmers against relying on a listempty - listfirst sequence in RCU safe code. This i...

UBUNTU-CVE-2025-21664

In the Linux kernel, the following vulnerability has been resolved: dm thin: make getfirstthin use rcu-safe list first function The documentation in rculist.h explains the absence of listemptyrcu and cautions programmers against relying on a listempty - listfirst sequence in RCU safe code. This i...

SUSE CVE-2024-57929

In the Linux kernel, the following vulnerability has been resolved: dm array: fix releasing a faulty array block twice in dmarraycursorend When dmbmreadlock fails due to locking or checksum errors, it releases the faulty block implicitly while leaving an invalid output pointer behind. The caller ...

DEBIAN-CVE-2024-57929

In the Linux kernel, the following vulnerability has been resolved: dm array: fix releasing a faulty array block twice in dmarraycursorend When dmbmreadlock fails due to locking or checksum errors, it releases the faulty block implicitly while leaving an invalid output pointer behind. The caller ...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfcworkerwakeup bsc1225820. CVE-2024-27397: netfilter: nftables: use timestamp to check for set eleme...

CVE-2022-41973 affecting package device-mapper-multipath 0.8.6-1

CVE-2022-41973 affecting package device-mapper-multipath 0.8.6-1. No patch is available currently...

CVE-2022-41974 affecting package device-mapper-multipath 0.8.6-1

CVE-2022-41974 affecting package device-mapper-multipath 0.8.6-1. No patch is available currently...

The vulnerability of the dm component in the Linux operating system’s kernel allows a hacker to gain elevated privileges within the system.

The vulnerability of the dm component of the Linux operating system’s kernel is related to memory errors that occur after the release of memory in the rebalancechildren function. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

Malicious code in dynamodb-data-mapper-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 93e1601651b9c7ac38203563ebdc9231ff5ac6298c9dee85fb2eeae24acdce30 The OpenSSF Package Analysis project identified 'dynamodb-data-mapper-js' @ 7.0.0 npm as malicious. It is considered malicious because: - The...

MAL-2024-12086 Malicious code in dynamodb-data-mapper-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 93e1601651b9c7ac38203563ebdc9231ff5ac6298c9dee85fb2eeae24acdce30 The OpenSSF Package Analysis project identified 'dynamodb-data-mapper-js' @ 7.0.0 npm as malicious. It is considered malicious because: - The...

PT-2024-17769 · Arctic Security · Arctic Hub

Name of the Vulnerable Software and Affected Versions: Arctic Security's Arctic Hub versions 3.0.1764 through 5.6.1877 Description: A Server-Side Request Forgery issue exists in the URL Mapper of Arctic Security's Arctic Hub, allowing an unauthenticated remote attacker to exfiltrate and modify...

CVE-2024-56016

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in maartenhemmes Image Mapper image-mapper allows Reflected XSS.This issue affects Image Mapper: from n/a through = 0.2.5.3...

CVE-2024-56016 WordPress Image Mapper plugin <= 0.2.5.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPTooling Image Mapper allows Reflected XSS.This issue affects Image Mapper: from n/a through 0.2.5.3...

CVE-2024-56016

The CVE-2024-56016 entry concerns a Reflected XSS in the Image Mapper plugin for WordPress (Image Mapper). The attack is triggered via input during web page generation and affects Image Mapper versions up to 0.2.5.3 (the range is not detailed beyond that). Root cause: improper neutralization of i...

WordPress plugin Image Mapper 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

WordPress Image Mapper plugin <= 0.2.5.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Image Mapper versions = 0.2.5.3...

CVE-2024-50279

...

CVE-2024-50278

...

PT-2024-33656 · Siemens · Comos

Name of the Vulnerable Software and Affected Versions: COMOS V10.3 versions prior to V10.3.3.5.8 COMOS V10.4.0 versions prior to V10.4.4.2 COMOS V10.4.1 versions prior to V10.4.4.2 COMOS V10.4.2 versions prior to V10.4.4.2 COMOS V10.4.3 versions prior to V10.4.3.0.47 COMOS V10.4.4 versions prior ...

qiwen-file 安全漏洞

qiwen-file qiwen.com is a distributed file system from qiwen. It aims to provide users and enterprises with a simple and convenient file storage solution that can manage files with a perfect directory structure system. A security vulnerability exists in qiwen-file v1.4.0, which originates from a...