[SECURITY] Fedora 42 Update: opensips-3.5.9-2.fc42

OpenSIPS or Open SIP Server is a very fast and flexible SIP RFC3261 proxy server. Written entirely in C, opensips can handle thousands calls per second even on low-budget hardware. A C Shell like scripting language provides full control over the server's behaviour. It's modular architecture allow...

Malicious code in @zalastax/nolb-osp (npm)

The package @zalastax/nolb-osp was found to contain malicious code...

MAL-2025-12857 Malicious code in @zalastax/nolb-osp (npm)

The package @zalastax/nolb-osp was found to contain malicious code...

MAL-2025-15751 Malicious code in bitcoin-osp (npm)

The package bitcoin-osp was found to contain malicious code...

Malicious code in bitcoin-osp (npm)

The package bitcoin-osp was found to contain malicious code...

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (osp-director-operator) security update

An update for osp-director-operator-container is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Moderate: Red Hat Security Advisory: Release of containers for OSP 16.2.z (Train) director Operator

Red Hat OpenStack Platform RHOSP 16.2.z Train director Operator containers are now available. Release of Red Hat OpenStack Platform RHOSP 16.2.z Train provides these changes:...

Important: Red Hat Security Advisory: Release of containers for OSP 16.2.z director operator tech preview

Red Hat OpenStack Platform 16.2 Train director operator containers, with several Important security fixes, are available for technology preview. Release osp-director-operator images Security Fixes: CVE-2022-30631 golang: compress/gzip: stack exhaustion in Reader.Read important CVE-2021-41103...

Important: Red Hat Security Advisory: Release of containers for OSP 16.2.z director operator tech preview

Red Hat OpenStack Platform 16.2 Train director operator containers, with several Important security fixes, are available for technology preview. Release osp-director-operator images Security Fixes: go-getter: unsafe download issue 1 of 3 Important CVE-2022-30321 go-getter: unsafe download issue 2...

Moderate: Red Hat Security Advisory: Release of containers for OSP 16.2.z director operator tech preview

Red Hat OpenStack Platform 16.2 Train director Operator containers are available for technology preview. Release osp-director-operator images Security Fixes: golang: kubernetes: YAML parsing vulnerable to "Billion Laughs" attack, allowing for remote CVE-2019-11253 golang: golang-github-miekg-dns:...

Important: Red Hat Security Advisory: Release of containers for OSP 16.2 director operator tech preview

Red Hat OpenStack Platform 16.2 Train director Operator containers are available for technology preview. Release osp-director-operator images Security Fixes: golang: net/http: limit growth of header canonicalization cache CVE-2021-44716 For more details about the security issues, including the...

osp-koelliker.it Improper Access Control vulnerability OBB-2198739

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Malicious Package in bitcoin-osp

All versions of this package contained malware. The package was designed to find and exfiltrate cryptocurrency wallets. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated...

GHSA-V8G7-9QV2-J865 Malicious Package in bitcoin-osp

All versions of this package contained malware. The package was designed to find and exfiltrate cryptocurrency wallets. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated...

Huawei Data Communication: Configuring OSPF Authentication

OSP authentication is configured to prevent attackers from attempting to use control plane protocols to destroy entries on which forwarding depends, such as routes. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

Spoofing

When libvirtd is configured by OSP director tripleo-heat-templates to use the TLS transport it defaults to the same certificate authority as all non-libvirtd services. As no additional authentication is configured this allows these services to connect to libvirtd which is equivalent to root acces...

CVE-2017-15114

When libvirtd is configured by OSP director tripleo-heat-templates to use the TLS transport it defaults to the same certificate authority as all non-libvirtd services. As no additional authentication is configured this allows these services to connect to libvirtd which is equivalent to root acces...

CVE-2017-15114

Technical details are not publicly available in the provided connected documents. The CVE description is repeated across sources without specifics on affected products, versions, or fixes. Monitor for updates from vendor advisories.

CVE-2017-15114

When libvirtd is configured by OSP director tripleo-heat-templates to use TLS transport, it defaults to the same certificate authority as all non-libvirtd services. As no additional authentication is configured, this allows these services to connect to libvirtd which is equivalent to root access...