2 matches found
MAL-2025-189358 Malicious code in saturnology-astroinformatics-release-it-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b3567225aede0b7578ed93233235ca67fe147bf5c5093c18d0dac200a90c12a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2009-4029
The 1 dist or 2 distcheck rules in GNU Automake 1.11.1, 1.10.3, and release branches branch-1-4 through branch-1-9, when producing a distribution tarball for a package that uses Automake, assign insecure permissions 777 to directories in the build tree, which introduces a race condition that allo...