Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

EUVD-2022-53227

Malicious code in bioql PyPI...

Security update for the Linux Kernel (Live Patch 35 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024147 fixes several issues. The following security issues were fixed: CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350. CVE-2025-38495: HID: core: ensure the allocated report buffer can contain the reserved report ID bsc1247351...

CVE-2022-36344

An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License' bundled with multiple products for corporate users as in Ichitaro through Pro5 and others. Since the affected product starts another program with an unquoted file path, a malicious file may be executed...

PT-2022-20980 · Egt Kommunikationstechnik Ug · Mediacenter

Name of the Vulnerable Software and Affected Versions: EGT-Kommunikationstechnik UG Mediacenter versions prior to 2.0 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability is present in the component Online Update.php. Recommendations: For versions prio...

Updating IPS Blade with the Latest Dynamic Protections

IPS dynamic updates are available to customers who have purchased the IPS subscription service. Customers with valid subscription license can choose the attacks to defend against, read detailed information about the attack, configure parameters for each attack defense, including logging options,...

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB4534978)

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 KB4534978 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET...

ready4newsoft.onlineupdateformacandpc.info. XSS vulnerability

Vulnerable URL: http://ready4newsoft.onlineupdateformacandpc.info./?pcl=NumThFbv7wnUKg5UITxgP8LfV4oNYgUwT8Eta02Bk.=58d11ac2d5712c13bdd52f69"'--!confirm'OPENBUGBOUNTY'...

SUSE SLED12 Security Update : gimp (SUSE-SU-2016:1962-1)

gimp was updated to fix one security issue. This security issue was fixed : - CVE-2016-4994: Use-after-free vulnerabilities in the channel and layer properties parsing process bsc986021. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE securi...

SUSE SLED11 / SLES11 Security Update : FUSE (SUSE-SU-2015:1024-1)

This update for FUSE fixes the following security issue : CVE-2015-3202: FUSE did not clear the environment upon execution of external programs. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

CVE-2014-2003

JustSystems JUST Online Update, as used in Ichitaro through 2014 and other products, does not properly validate signatures of update modules, which allows remote attackers to spoof modules and execute arbitrary code via a crafted signature...

JVN#50129191: JustSystems Online Update Program bundled with JustSystems products vulnerable to arbitrary code execution

"JUST Online Update" and "JUST Online Update for J-License and the management tools" that are bundled with multiple JustSystems products contain a flaw that allows the update program to be executed even if the signature of an update module is invalid. Please note that this is a flaw in the online...

Kingsoft Writer vulnerable to buffer overflow

Overview Kingsoft Writer contains a buffer overflow vulnerability. Kingsoft Writer is a software to edit document files. Kingsoft Writer contains a buffer overflow vulnerability. Yuji Ukai of Fourteenforty Research Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the...

Mandriva Update for perl-URPM MDVA-2011:018 (perl-URPM)

Check for the Version of perl-URPM OpenVAS Vulnerability Test Mandriva Update for perl-URPM MDVA-2011:018 perl-URPM Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Mandriva Update for perl-URPM MDVA-2011:018 (perl-URPM)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

SA-2008-026 - Drupal core - Access bypass

The menu system routes page requests to appropriate handlers. It also determines whether a user has access to pages based on several criteria, such as permissions assigned to a role. Drupal 6 features an entirely revised menu system, including changes to the way access is dealt with, which if not...

Updating IPS Blade with the Latest Dynamic Protections

IPS dynamic updates are available to customers who have purchased the IPS subscription service. Customers with valid subscription license can choose the attacks to defend against, read detailed information about the attack, configure parameters for each attack defense, including logging options,...

Secunia Research: NOD32 Anti-Virus ARJ Archive Handling Buffer Overflow

====================================================================== Secunia Research 08/09/2005 - NOD32 Anti-Virus ARJ Archive Handling Buffer Overflow - ====================================================================== Table of Contents Affected...

SuSEs YaST Online Update - possible symlink attack

author:l0om - l0omatexcluded.org - www.excluded.org date:05.04.2004 product:SuSE 9.0 maybe lower possible symlink attack in SuSEs YOU YaST Online Update in SuSE linux you can use YOU to auto update your system. you can do this by YaST or by hand with the command "onlineupdate". as a normal user y...