Malicious code in @pelmnaads/naads-common-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68990dfacdc750bf464d646aca4855c2dd23bbefcadef1d9638e2d663a23fc57 The package is published to the public npm registry under @pelmnaads/naads-common-logger with version 19999.0.1 — the canonical dependency-confusion...

CLSA-2026-1768861951 Update of gnutls

Backport CVE fixes - Bump version to solve conflict with community package...

CVE-2024-6595

An issue was discovered in GitLab CE/EE affecting all versions starting from 11.8 prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting from 17.1 prior to 17.1.2 where it was possible to upload an NPM package with conflicting package data...

SUSE-SU-2023:4579-1 Security update for slurm_22_05

This update for slurm2205 fixes the following issues: - CVE-2023-41914: Fixed a filesystem handling race condition that could have led to an attacker taking control of an arbitrary file, or removing entire directory contents bsc1216207. Bug fixes: - Add missing dependencies to slurm-config to...

Product release: Virtuozzo Hybrid Infrastructure 3.5 Update 4 (3.5.4-24)

This update provides a new feature as well as bug fixes and improvements. Vulnerability id: VSTOR-33730 Nodes may be shown as offline in admin panel after releasing a failed CS disk. Vulnerability id: VSTOR-33712 False positive "Node is offline" alerts may appear. Vulnerability id: VSTOR-33672 Th...

Debian DLA-903-1 : hunspell-en-us update

The dictionary provided by this package had an unnecessary unversioned conflict against the thunderbird package which recently got reintroduced into Wheezy. For Debian 7 'Wheezy', this problem has been fixed in version 20070829-6+deb7u1. We recommend that you upgrade your hunspell-en-us packages...

MGASA-2016-0332 Updated bind packages fix security vulnerability

The lwresd component in BIND which is not enabled by default could crash while processing an overlong request name. This could lead to a denial of service CVE-2016-2775. A crafted query could crash the BIND name server daemon, leading to a denial of service. All server roles authoritative,...

Moderate: Red Hat Security Advisory: openstack-neutron security and bug fix update

Updated openstack-neutron packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 6.0 Red Hat Product Security has rated this update as having a Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Mandriva Linux Security Advisory : vim (MDVSA-2008:236-1)

Several vulnerabilities were found in the vim editor : A number of input sanitization flaws were found in various vim system functions. If a user were to open a specially crafted file, it would be possible to execute arbitrary code as the user running vim CVE-2008-2712. Ulf Hrnhammar of Secunia...

Mandriva Update for vim MDVSA-2008:236-1 (vim)

Check for the Version of vim OpenVAS Vulnerability Test Mandriva Update for vim MDVSA-2008:236-1 vim Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Critical: Red Hat Security Advisory: java-1.5.0-ibm security update

java-1.5.0-ibm packages that correct a security issue are available for Red Hat Enterprise Linux 5 Supplementary and Enterprise Linux 4 Extras. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.5.0 Java release includes the IBM Java 2...