Apple多款产品 安全漏洞

Apple iOS, among others, are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple macOS is a specialized operating system designed for Mac computers. Apple iPadOS is an operating system for iPad tablets. Several of Apple’s products have...

OESA-2026-1721 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

Apple多款产品 安全漏洞

Apple Safari, among others, are products of the American company Apple. Apple Safari is a web browser that is the default browser included with the Mac OS X and iOS operating systems. Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad...

USN-7935-1 linux-azure, linux-azure-6.8 vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

TencentOS Server 3: opensc (TSSA-2023:0324)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0324 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: fix use-after-free in stateshow CVE-2025-39877 In the Linux kernel, the following vulnerability has been resolved: libceph: fix invalid accesses to cephconnectionv1info CVE-2025-39880 In the Linux...

EUVD-2011-1033

Malware in sbrugna...

EUVD-2007-2484

Malware in sbrugna...

EUVD-2018-9803

Malware in sbrugna...

EUVD-2007-4206

Malware in sbrugna...

EUVD-2017-7742

Malware in sbrugna...

EUVD-2023-52741

Malicious code in bioql PyPI...

EUVD-2024-36566

Malicious code in bioql PyPI...

EUVD-2023-45217

Malicious code in bioql PyPI...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-50116: kernel: tty: ngsm: fix deadlock and link starvation in outgoing data path bsc1244824. CVE-2024-53177: smb: prevent use-after-free due to opencachedd...

Rockwell Automation Arena < 16.20.10 Multiple Vulnerabilities

The version of Rockwell Automation Arena installed on the remote Windows host is prior to 16.20.10. It is, therefore, affected by a multiple vulnerabilities - A memory abuse issue exists in the affected product. A custom file can force Arena Simulation to read and write past the end of memory...

NewStart CGSL MAIN 7.02 : opensc Multiple Vulnerabilities (NS-SA-2025-0119)

The remote NewStart CGSL host, running version MAIN 7.02, has opensc packages installed that are affected by multiple vulnerabilities: - A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it can perform cryptographic operation...

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: cifs: potential buffer overflow in handling symlinks CVE-2022-49058 kernel: media: uvcvideo: Remove dangling pointers CVE-2024-580...

Azure Linux 3.0 Security Update: opensc (CVE-2023-40661)

The version of opensc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-40661 advisory. - Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollme...

CVE-2025-20983

CVE-2025-20983 involves an out-of-bounds write in the authentication secret checking path of the KnoxVault trustlet. Affected: KnoxVault trustlet on Samsung devices prior to SMR Jul-2025 Release 1. Root cause: out-of-bounds write when validating the auth secret, enabling local privileged attacker...