9 matches found
Malicious code in flare-markdown-nuxtjs-bootstrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bad6874c7e2400099e1265a13d17d1878923c6efc8c4f2ab254726f668d03798 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-77496 Malicious code in dewanto-donat12-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3e11133101c41868495c3aa81963be0ec8784d42294333a0b5f52bffb6209e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MediaTek 芯片安全漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. A security vulnerability exists in the MediaTek chips, which stems from a mismatch in the package format and could potentially lift rights...
Multiple MediaTek chips telephony elevation of privilege vulnerability
MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. An elevation of privilege vulnerability exists in several MediaTek chips telephony, which stems from a mismatch in the package format and can be exploited by an attacker to conduct elevation of privilege...
MediaTek 芯片代码问题漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. An elevation of privilege vulnerability exists in several MediaTek chips telephony, which stems from a mismatch in the package format and can be exploited by an attacker to conduct elevation of privilege...
MediaTek 芯片代码问题漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. An elevation of privilege vulnerability exists in a number of MediaTek chipsims, which stems from a mismatch in the package format, and can be exploited by an attacker to gain elevation of privilege...
[SECURITY] [DSA 3407-1] dpkg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3407-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 26, 2015 https://www.debian.org/security/faq -...
CVE-2007-2027
Untrusted search path vulnerability in the addfilenametostring function in intl/gettext/loadmsgcat.c for Elinks 0.11.1 allows local users to cause Elinks to use an untrusted gettext message catalog .po file in a "../po" directory, which can be leveraged to conduct format string attacks...
[Full-Disclosure] [SECURITY] [DSA 485-1] New ssmtp packages fix format string vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 485-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 14th, 2004 http://www.debian.org/security/faq -...