Malicious code in yawn-cloud-llq147-project (npm)

The package yawn-cloud-llq147-project was found to contain malicious code...

Malicious code in hammock-moose-wlx635-project (npm)

The package hammock-moose-wlx635-project was found to contain malicious code...

Malicious code in victor-9vf-project (npm)

The package victor-9vf-project was found to contain malicious code...

MAL-2025-37068 Malicious code in topaz-ripple-gfr006-project (npm)

The package topaz-ripple-gfr006-project was found to contain malicious code...

MAL-2025-38073 Malicious code in valley-zodiac-ume337-project (npm)

The package valley-zodiac-ume337-project was found to contain malicious code...

Malicious code in octopus-sequoia-elc401-project (npm)

The package octopus-sequoia-elc401-project was found to contain malicious code...

MAL-2025-38065 Malicious code in valley-peacock-hfj472-project (npm)

The package valley-peacock-hfj472-project was found to contain malicious code...

xpcd -- buffer overflow

Debian Project reports: Erik Sjolund discovered a buffer overflow in pcdsvgaview, an SVGA PhotoCD viewer. xpcd-svga is part of xpcd and uses svgalib to display graphics on the Linux console for which root permissions are required. A malicious user could overflow a fixed-size buffer and may cause...