2076 matches found
EUVD-2025-112662
Malicious code in hydra-pipe-lint-yonder npm...
EUVD-2025-122989
Malicious code in quark-pipe-mocha-nodejs npm...
EUVD-2025-121843
Malicious code in solis-polaris-playwright-pipe npm...
EUVD-2025-123650
Malicious code in pipe-umbra-mira-concurrently npm...
EUVD-2025-114779
Malicious code in css-minimizer-webpack-plugin-nextjs-ignite-pipe npm...
EUVD-2025-120354
Malicious code in writable-pipe-terser-spinner npm...
EUVD-2025-123664
Malicious code in pipe-antares-iota-registry npm...
Malicious code in quark-pipe-mocha-nodejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00fbf13855675eb0f04555f377cf94b4bcc89c117c1b9e7a004ad4c3159c4c47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123661
Malicious code in pipe-cygnus-telesto-postcss npm...
Malicious code in koa-pipe-dorado-adonis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5757fe0f704af36026b30b821eb55e1852c529acd48a1a22c9417e571e4f8ef1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123660
Malicious code in pipe-docusaurus-docusaurus-pino npm...
MAL-2025-146651 Malicious code in promise-subscription-pipe-bellatrix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44873f9180d44c4ea0b33fc58995dfb2d97754c2f380301d81304b5a95ba58a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
kernel: HID: hid-thrustmaster: Fix warning in thrustmaster_probe by adding endpoint check
In the Linux kernel, the following vulnerability has been resolved: HID: hid-thrustmaster: Fix warning in thrustmasterprobe by adding endpoint check syzbot has found a type mismatch between a USB pipe and the transfer endpoint, which is triggered by the hid-thrustmaster driver1. There is a number...
Botan C++ Crypto Algorithms Library 3.10.0
Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS 10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990479)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990479 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Return error code in mdp5piperelease when deadlock is detected mdp5getglobalstate...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990469)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990469 advisory. In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix struct clk leak on probe errors Make sure to release the pipe clock reference ...
CVE-2025-12683
The service employed by Everything, running as SYSTEM, communicates with the lower privileged Everything GUI via a named pipe. The named pipe has a NULL DACL and thus provides all users full permission over it; leading to potential Service Denial Of Service or Privilege escalationonly if chained...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989587)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989587 advisory. In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: properly check endpoint type Syzbot reported warning in usbsubmiturb which is cause...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989523)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989523 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Return error code in mdp5piperelease when deadlock is detected mdp5getglobalstate...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989326)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989326 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check pipe offset before setting vblank pipectx has a size of MAXPIPES so checki...