Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: schedext: The bug where isbpfmigrationdisabled returned a false negative for tasks that are not under PREEMPTRCU protection was fixed. Since the commit 8e4f0b1ebcf2 “bpf: use rcureadlockdontmigrate for trampoline.c”, the BPF prol...

CVE-2026-31734

In the Linux kernel, the following vulnerability has been resolved: schedext: Fix isbpfmigrationdisabled false negative on non-PREEMPTRCU Since commit 8e4f0b1ebcf2 "bpf: use rcureadlockdontmigrate for trampoline.c", the BPF prolog bpfprogenter calls migratedisable only when CONFIGPREEMPTRCU is...

PT-2026-36369

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the sched ext component where the is bpf migration disabled function produces a false negative on systems where CONFIG PREEMPT RCU is disabled. This occurs because the...

RHEL 8 : expat (RHSA-2025:22842)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:22842 advisory. Expat is a C library for parsing XML documents. Security Fixes: expat: internal entity expansion CVE-2013-0340 expat: integer overflow in t...

CVE-2025-63848

Stored cross site scripting xss vulnerability in SWISH prolog thru 2.2.0 allowing attackers to execute arbitrary code via crafted web IDE notebook...

EUVD-2025-198293

Stored cross site scripting xss vulnerability in SWISH prolog thru 2.2.0 allowing attackers to execute arbitrary code via crafted web IDE notebook...

CVE-2025-63848

Stored cross site scripting xss vulnerability in SWISH prolog thru 2.2.0 allowing attackers to execute arbitrary code via crafted web IDE notebook...

CVE-2025-63848

Stored cross site scripting xss vulnerability in SWISH prolog thru 2.2.0 allowing attackers to execute arbitrary code via crafted web IDE notebook...

PT-2025-47605

Name of the Vulnerable Software and Affected Versions SWISH prolog versions through 2.2.0 Description A stored cross site scripting issue exists in SWISH prolog through version 2.2.0. This allows attackers to execute arbitrary code through a specially crafted web IDE notebook. The issue involves...

CVE-2025-63848

The CVE-2025-63848 entry describes a stored XSS vulnerability in SWISH (SWI‑Prolog SWISH Web IDE) up to version 2.2.0. The issue allows an attacker to execute arbitrary code via a crafted notebook in the Web IDE, indicating code execution impact tied to the web interface. Affected component: SWIS...

SWI-Prolog SWISH 安全漏洞

SWI-Prolog SWISH is a Web Integrated Development Environment from the SWI-Prolog organization. A security vulnerability exists in SWI-Prolog SWISH version 2.2.0 and earlier, which stems from stored cross-site scripting and could lead to the execution of arbitrary code...

CVE-2025-63848

Stored cross site scripting xss vulnerability in SWISH prolog thru 2.2.0 allowing attackers to execute arbitrary code via crafted web IDE notebook...

CVE-2025-63848

Stored cross site scripting xss vulnerability in SWISH prolog thru 2.2.0 allowing attackers to execute arbitrary code via crafted web IDE notebook...

EUVD-2016-1227

Malware in sbrugna...

EUVD-2012-5960

Malware in sbrugna...

EUVD-2017-8684

Malware in sbrugna...

EUVD-2012-5961

Malware in sbrugna...

EUVD-2017-7018

Malware in sbrugna...

EUVD-2022-46382

Malicious code in bioql PyPI...

CodeQL zero to hero part 5: Debugging queries

When you're first getting started with CodeQL, you may find yourself in a situation where a query doesn't return the results you expect. Debugging these queries can be tricky, because CodeQL is a Prolog-like language with an evaluation model that's quite different from mainstream languages like...