Moderate: Red Hat Security Advisory: go-toolset:rhel8 security update

An update for the go-toolset:rhel8 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detail...

Moderate: Red Hat Security Advisory: go-toolset:rhel8 security update

An update for the go-toolset:rhel8 module is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...

database/sql: Postgres Scan Race Condition

A flaw was found in database/sql. Concurrent queries can produce unexpected results when a query is cancelled during a Scan method call on returned Rows, creating a race condition. This vulnerability allows an attacker who can initiate and cancel queries to trigger this condition, possibly leadin...

Moderate: Red Hat Security Advisory: golang security update

An update for golang is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Moderate: Red Hat Security Advisory: golang security update

An update for golang is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization via the CREATE STATISTICS command. A table owner can exploit this vulnerability by creating a statistics object in an arbitrary schema, blocking other users with valid CREATE privileges from creating a statistics...

Malicious code in postgres-promise-transform-farout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea347cd20aedc5d8182d0495c956fa7c35ab0496a8d61ed58da90135a7463ebf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-180514

Malicious code in acamar-postgres-gammarayburst-astrophysics npm...

EUVD-2025-177061

Malicious code in primatology-algol-postgres-unuk npm...

EUVD-2025-177355

Malicious code in paleomagnetism-neptune-jsonp-postgres npm...

EUVD-2025-180237

Malicious code in auriga-postgres-fermion-filament npm...

EUVD-2025-178004

Malicious code in luna-local-optimize-css-assets-webpack-plugin-postgres npm...

EUVD-2025-178269

Malicious code in jovian-postgres-webdriver-mocha-await npm...

Malicious code in hadron-postgres-phylogenetics-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f7efecbc67236e9f7c84f6a8aae55425b28b28775927173eba1a0a284193afa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-178846

Malicious code in fornax-postgres-phoenix-semantic-ui npm...

EUVD-2025-177087

Malicious code in postgres-buffer-prettier-stylelint-lithosphere npm...

EUVD-2025-179188

Malicious code in elara-hexo-postgres-astrochemistry npm...

Malicious code in gemini-postgres-rehype-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 835234f600dc962131b0c036e7163ad52a55b2eff7514f87441427dbc9a88dae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-177223

Malicious code in phenomic-resolvers-node-config-postgres npm...

MAL-2025-186126 Malicious code in chariklo-babel-postgres-thuban (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 393b5965a6937405c9e5c9fcbd04f7ceb4037d5f924bc82461abf50350ff323d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...