425 matches found
GHSA-9GCR-GP5F-JW27 vulnerabilities
Vulnerabilities for packages: dfc, prometheus-mongodb-exporter-fips, cilium-fips, crane-fips, gcsfuse, promxy, ko, terraform-provider-kubernetes, rancher-webhook-fips, tekton-pipelines, kpt, kubernetes-dashboard-metrics-scraper-fips, kubernetes-event-exporter,...
CVE-2025-58189 vulnerabilities
Vulnerabilities for packages: dfc, prometheus-mongodb-exporter-fips, cilium-fips, crane-fips, gcsfuse, promxy, ko, terraform-provider-kubernetes, rancher-webhook-fips, tekton-pipelines, kpt, kubernetes-dashboard-metrics-scraper-fips, kubernetes-event-exporter,...
CVE-2025-58058 affecting package packer for versions less than 1.9.5-10
CVE-2025-58058 affecting package packer for versions less than 1.9.5-10. A patched version of the package is available...
CVE-2025-58058 affecting package packer for versions less than 1.9.5-15
CVE-2025-58058 affecting package packer for versions less than 1.9.5-15. A patched version of the package is available...
EUVD-2015-1597
Malware in sbrugna...
EUVD-2011-4062
Malware in sbrugna...
EUVD-2015-1596
Malware in sbrugna...
EUVD-2019-9298
Malware in sbrugna...
EUVD-2022-45783
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2022-42717
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Hashicorp Packer before 2.3.1. The recommended sudoers configuration for Vagrant on Linux is insecure. If the host has been configure...
Linux Distros Unpatched Vulnerability : CVE-2019-20051
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A floating-point exception was discovered in PackLinuxElf::elfhash in plxelf.cpp in UPX 3.95. The vulnerability causes an application crash, which leads to deni...
Linux Distros Unpatched Vulnerability : CVE-2023-23456
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer overflow issue was discovered in UPX in PackTmt::pack in ptmt.cpp file. The flow allows an attacker to cause a denial of service abort via a...
AZL-66759 CVE-2025-58058 affecting package packer for versions less than 1.9.5-10
xz is a pure golang package for reading and writing xz-compressed files. Prior to version 0.5.14, it is possible to put data in front of an LZMA-encoded byte stream without detecting the situation while reading the header. This can lead to increased memory consumption because the current...
AZL-66741 CVE-2025-58058 affecting package packer for versions less than 1.9.5-15
xz is a pure golang package for reading and writing xz-compressed files. Prior to version 0.5.14, it is possible to put data in front of an LZMA-encoded byte stream without detecting the situation while reading the header. This can lead to increased memory consumption because the current...
Fedora: Security Advisory (FEDORA-2025-9988949ccd)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GHSA-J5PM-7495-QMR3 vulnerabilities
Vulnerabilities for packages: cilium-fips, terraform-provider-kubernetes, promxy, ksops, flux-image-automation-controller, rancher-webhook-fips, crossplane-provider-sql-fips, tekton-pipelines, kpt, kubernetes-dashboard-metrics-scraper-fips, gh, render-template, cilium-envoy, gitlab-cng,...
[SECURITY] Fedora 41 Update: perl-PAR-Packer-1.063-6.fc41
This module implements the App::Packer::Backend interface, for generating stand-alone executables, perl scripts and PAR files...
[SECURITY] Fedora 42 Update: perl-PAR-Packer-1.064-2.fc42
This module implements the App::Packer::Backend interface, for generating stand-alone executables, perl scripts and PAR files...
CVE-2025-22872 affecting package packer for versions less than 1.9.5-13
CVE-2025-22872 affecting package packer for versions less than 1.9.5-13. A patched version of the package is available...
PackHero: a Scalable Graph-Based Approach for Efficient Packer Identification
Anti-analysis techniques, particularly packing, challenge malware analysts, making packer identification fundamental. Existing packer identifiers have significant limitations: signature-based methods lack flexibility and struggle against dynamic evasion, while Machine Learning approaches require...