openSUSE 16 Security Update : go-sendxmpp (openSUSE-SU-2026:20058-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20058-1 advisory. Changes in go-sendxmpp: - Update to 0.15.1: Added Add XEP-0359 Origin-ID to messages requires go-xmpp = v0.2.18. Changed HTTP upload: Ignore...

OPENSUSE-SU-2026:20058-1 Security update for go-sendxmpp

This update for go-sendxmpp fixes the following issues: Changes in go-sendxmpp: - Update to 0.15.1: Added Add XEP-0359 Origin-ID to messages requires go-xmpp = v0.2.18. Changed HTTP upload: Ignore timeouts on disco IQs as some components do not reply. - Upgrades the embedded golang.org/x/net to...

CVE-2025-12414 Looker account compromise via punycode homograph attack

An attacker could take over a Looker account in a Looker instance configured with OIDC authentication, due to email address string normalization.Looker-hosted and Self-hosted were found to be vulnerable. This issue has already been mitigated for Looker-hosted. Self-hosted instances must be upgrad...

CVE-2025-12414

CVE-2025-12414 affects Looker installations using OIDC authentication, due to email address string normalization. Looker-hosted deployments are mitigated; self-hosted instances require upgrading to fixed versions (examples listed: 24.12.100+, 24.18.193+, 25.0.69+, 25.6.57+, 25.8.39+, 25.10.22+, 2...

CVE-2025-12414 Looker account compromise via punycode homograph attack

An attacker could take over a Looker account in a Looker instance configured with OIDC authentication, due to email address string normalization.Looker-hosted and Self-hosted were found to be vulnerable. This issue has already been mitigated for Looker-hosted. Self-hosted instances must be upgrad...

Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2019-12290)

GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specified in RFC3490 Section 4.2 when converting A-labels to U-labels. This makes it possible in some circumstances for one domain to impersonate another. By creating a malicious domain that matches a target domain except for the...

Astra Linux - уязвимость в curl

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

`unic-idna-punycode` is unmaintained

All Unicode crates that are part of https://github.com/open-i18n/rust-unic are unmaintained. Recommended alternatives - idna...

RUSTSEC-2025-0088 `unic-idna-punycode` is unmaintained

All Unicode crates that are part of https://github.com/open-i18n/rust-unic are unmaintained. Recommended alternatives - idna...

bootstring (=0.1.0), deltachat_message_parser (>=0.3.0 <=0.14.1) +8 more potentially affected by unknown CVE via unic-idna-punycode (>=0.1.1 <=0.9.0)

unic-idna-punycode CARGO version =0.1.1, =0.3.0, =0.3.0, =0.2.4-beta, =0.3.0, =0.1.0, =0.1.0, =0.5.0, =0.7.0, =0.1.1, =0.9.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0088...

SUSE-SU-2025:20858-1 Security update for rust-keylime

This update for rust-keylime fixes the following issues: - CVE-2025-55159: slab: incorrect bounds check in getdisjointmut function can lead to undefined behavior or potential crash due to out-of-bounds access bsc1248006 - CVE-2025-3416: openssl: Use-After-Free in Md::fetch and Cipher::fetch in...

EUVD-2020-4780

Malware in sbrugna...

EUVD-2017-16813

Malware in sbrugna...

EUVD-2009-3033

Malware in sbrugna...

EUVD-2019-6248

Malware in sbrugna...

EUVD-2005-0239

Malware in sbrugna...

EUVD-2005-0235

Malware in sbrugna...

EUVD-2024-3478

Malicious code in bioql PyPI...

EUVD-2024-47867

Malicious code in bioql PyPI...

EUVD-2023-54262

Malicious code in bioql PyPI...