[SECURITY] Fedora 41 Update: openapi-python-client-0.24.3-2.fc41

The openapi-python-client is a powerful tool designed to generate modern Python clients from OpenAPI 3.0+ documents supporting both synchronous and asynchronous HTTP requests. It automates the creation of Python classes and methods that correspond to the endpoints and schema defined in your OpenA...

Fedora 41 : openapi-python-client / python-uv-build / ruff / etc (2025-43a0bff5ea)

The remote Fedora 41 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-43a0bff5ea advisory. uv 0.9.5 https://github.com/astral-sh/uv/blob/0.9.5/CHANGELOG.md Since uv was built with astral-tokio-tar 0.5.6, this is a security fix for...

Fedora 42 : openapi-python-client / python-uv-build / ruff / etc (2025-a77c1f005b)

The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-a77c1f005b advisory. uv 0.9.5 https://github.com/astral-sh/uv/blob/0.9.5/CHANGELOG.md Since uv was built with astral-tokio-tar 0.5.6, this is a security fix for...

Malicious Package

Overview sechub-openapi-ts-client is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

Malicious Package

Overview sechub-openapi-typescript is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

Malicious code in sechub-openapi-ts-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbfa8eb5cccd4e8e722c4df1147efab7d4c4084b31710e417b10b87bf1d63267 The package sechub-openapi-ts-client was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-37376

Malicious code in sechub-openapi-ts-client npm...

MAL-2025-49306 Malicious code in sechub-openapi-ts-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbfa8eb5cccd4e8e722c4df1147efab7d4c4084b31710e417b10b87bf1d63267 The package sechub-openapi-ts-client was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-37377

Malicious code in sechub-openapi-typescript npm...

MAL-2025-49307 Malicious code in sechub-openapi-typescript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fa5b3dc481ba626b038be55ed5cb344e32dc983f53f2b83fc1b9f6293a3a493 The package sechub-openapi-typescript was found to contain malicious code. Source: ghsa-malware...

Malicious code in sechub-openapi-typescript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fa5b3dc481ba626b038be55ed5cb344e32dc983f53f2b83fc1b9f6293a3a493 The package sechub-openapi-typescript was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-37116

Malicious code in epic-openapi-codegen npm...

MAL-2025-49177 Malicious code in epic-openapi-codegen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72c376cbf488eb74d4d24b10cd6153640f94a3ceb831332dc1f0f056934c91ed The package epic-openapi-codegen was found to contain malicious code...

Malicious code in epic-openapi-codegen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72c376cbf488eb74d4d24b10cd6153640f94a3ceb831332dc1f0f056934c91ed The package epic-openapi-codegen was found to contain malicious code...

Fedora: Security Advisory (FEDORA-2025-42dd948b86)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 43 : openapi-python-client (2025-42dd948b86)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-42dd948b86 advisory. - Update upstream version 0.26.1 - Delete old patch for the fix of the CLI tests fix-test-cli-1309.patch - Update allow-typer-0.19.patch Tenable has extracte...

CVE-2025-62256

Liferay Portal 7.4.0 through 7.4.3.109, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.7, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not properly restrict access to OpenAPI in certain circumstances, which allows remote attackers...

GHSA-J82Q-C85J-XW4W Liferay Portal and DXP do not properly restrict access to OpenAPI

Liferay Portal 7.4.0 through 7.4.3.109, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.7, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not properly restrict access to OpenAPI in certain circumstances, which allows remote attackers...

Liferay Portal and DXP do not properly restrict access to OpenAPI

Liferay Portal 7.4.0 through 7.4.3.109, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.7, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not properly restrict access to OpenAPI in certain circumstances, which allows remote attackers...

Missing Authorization

Overview com.liferay:com.liferay.portal.vulcan.impl is a Liferay Portal Vulcan Implementation Affected versions of this package are vulnerable to Missing Authorization due to improper access control to OpenAPI. An attacker can retrieve sensitive OpenAPI YAML files by sending a specially crafted...