USN-8085-1: .NET vulnerabilities

It was discovered that the .NET Microsoft.Bcl.Memory NuGet package did not properly handle certain malformed Base64Url encoded input. An attacker could possibly use this issue to cause .NET to crash, resulting in a denial of service. This issue only affected .NET 9.0 and .NET 10.0. CVE-2026-26127...

MAL-2025-41420 Malicious code in website-memory (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in website-memory (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-41377 Malicious code in conversation-memory (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in conversation-memory (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in image-memory (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 40ad268d8e5d26e3c122a979160b815c349dc3cd4d22004530c3a5ca5c4299a9 The OpenSSF Package Analysis project identified 'image-memory' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...

MAL-2025-41298 Malicious code in image-memory (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 40ad268d8e5d26e3c122a979160b815c349dc3cd4d22004530c3a5ca5c4299a9 The OpenSSF Package Analysis project identified 'image-memory' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...

Malicious code in shopify-app-session-storage-memory (npm)

The package shopify-app-session-storage-memory was found to contain malicious code...

Linux Distros Unpatched Vulnerability : CVE-2019-3858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out of bounds read flaw was discovered in libssh2 before 1.8.1 when a specially crafted SFTP packet is received from the server. A remote attacker who...