New PondRAT Malware Hidden in Python Packages Targets Software Developers

Threat actors with ties to North Korea have been observed using poisoned Python packages as a way to deliver a new malware called PondRAT as part of an ongoing campaign. PondRAT, according to new findings from Palo Alto Networks Unit 42, is assessed to be a lighter version of POOLRAT aka SIMPLESE...

a-data-processing (=0.0.1), ab-data-processing (=0.0.1) +486 more potentially affected by CVE-2024-5998 via langchain-community (>=0.0.1 <=0.2.2)

langchain-community PYPI version =0.0.1, =0.1.0, =0.0.2, =0.0.1, =0.1.0, =0.0.1, =0.0.18, =0.2.0, =0.0.1, =0.0.2, =0.0.1, =0.0.4a1 - aicat-annotator =0.0.1 and more Source cves: CVE-2024-5998 Source advisory: OSV:GHSA-F2JM-RW3H-6PHG...

Developers Beware: Lazarus Group Uses Fake Coding Tests to Spread Malware

Cybersecurity researchers have uncovered a new set of malicious Python packages that target software developers under the guise of coding assessments. "The new samples were tracked to GitHub projects that have been linked to previous, targeted attacks in which developers are lured using fake job...

Researchers Find Over 22,000 Removed PyPI Packages at Risk of Revival Hijack

A new supply chain attack technique targeting the Python Package Index PyPI registry has been exploited in the wild in an attempt to infiltrate downstream organizations. It has been codenamed Revival Hijack by software supply chain security firm JFrog, which said the attack method could be used t...

aws-service-catalog-factory (>=0.102.0 <=0.102.1), aws-service-catalog-puppet (>=0.96.0 <=0.253.0) +68 more potentially affected by CVE-2024-21542 via luigi (>=3.0.0b2 <=3.5.2)

luigi PYPI version =3.0.0b2, =0.102.0, =0.96.0, =0.4.0, =0.0.8, =0.40.0, =1.0.1, =0.4.0, =1.0.0a20, =0.5.0, =0.0.7, =0.1.0, =0.1.0, =0.2.3, =0.1.0, =0.1.12, =0.1.15 and more Source cves: CVE-2024-21542 Source advisory: SNYK:PYTHON-LUIGI-7830489...

CVE-2024-8088 vulnerabilities

Vulnerabilities for packages: python...

RLSA-2024:5533 Important: python3.12-setuptools security update

Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially ones that have dependencies on other packages. This package also contains the runtime components of setuptools, necessary to execute the software...

CVE-2024-7592 vulnerabilities

Vulnerabilities for packages: python, nodejs...

CVE-2024-7592 vulnerabilities

Vulnerabilities for packages: python, nodejs...

[SECURITY] Fedora 39 Update: python-setuptools-67.7.2-8.fc39

Setuptools is a collection of enhancements to the Python distutils that allow you to more easily build and distribute Python packages, especially ones that have dependencies on other packages. This package also contains the runtime components of setuptools, necessary to execute the software that...

Fedora: Security Advisory (FEDORA-2024-247e9ba33a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-6923 vulnerabilities

Vulnerabilities for packages: python, nodejs...

Hackers Distributing Malicious Python Packages via Popular Developer Q&A Platform

In yet another sign that threat actors are always looking out for new ways to trick users into downloading malware, it has come to light that the question-and-answer Q&A platform known as Stack Exchange has been abused to direct unsuspecting developers to bogus Python packages capable of draining...

a2grunnerp (>=0.1.0 <=0.1.8), abba-python (>=0.1.6 <=0.3.0) +714 more potentially affected by CVE-2023-33976 via tensorflow (>=1.0.1 <=2.12.0rc1)

tensorflow PYPI version =1.0.1, =0.1.0, =0.1.6, =0.1.0, =1.1.2, =0.0.1, =0.3.26, =1.1.0, =1.8.15, =1.8.17, =0.0.1, =0.1.18, =1.8.14, =2.2.0 and more Source cves: CVE-2023-33976 Source advisory: OSV:GHSA-GJH7-XX4R-X345...

1a23-telemetry (=1.0.0), abdelrahman-obfuscate (>=1.0.0 <=1.0.1) +315 more potentially affected by CVE-2024-40647 via sentry-sdk (>=0.10.0 <=1.45.0)

sentry-sdk PYPI version =0.10.0, =1.0.0, =2.0.0, =0.0.1.dev0, =0.1.1, =0.0.1, =3.1.4, =0.6.2, =0.2.8, =0.1.0, =2.5.7, =2.85.0 and more Source cves: CVE-2024-40647 Source advisory: OSV:GHSA-G92J-QHMH-64V2...

aaiopay (>=0.2.1 <=0.2.2), abc-xml-converter (>=1.0.0 <=1.0.1) +2837 more potentially affected by CVE-2024-6345 via setuptools (>=15.2.0 <=69.5.1)

setuptools PYPI version =15.2.0, =0.2.1, =1.0.0, =0.0.1, =0.1.18, =0.0.1, =0.1.0, =0.2.6, =1.6.0, =0.0.3, =0.1.1, =0.1.2 and more Source cves: CVE-2024-6345 Source advisory: OSV:GHSA-CX63-2MW6-8HW5...

adede (=4.1.0), aimmo (>=0.57.1 <=1.3.1b671) +155 more potentially affected by CVE-2024-39317 via wagtail (>=2.0.2 <=5.1.3)

wagtail PYPI version =2.0.2, =0.57.1, =4.1.0, =4.3.0, =2.28.0, =0.5.0, =2.0.0, =0.1.29, =0.2.0, =2.0.3, =2.0.7 - draftail-helpers =4.1.0 - draftail-maths =4.1.0 and more Source cves: CVE-2024-39317 Source advisory: OSV:PYSEC-2024-86...

CVE-2024-39329 vulnerabilities

Vulnerabilities for packages: py3-django...

11x-wagtail-blog (>=0.0.0 <=0.2.0), aldryn-django (>=5.0.2.0 <=5.0.11.0) +235 more potentially affected by CVE-2024-38875 via django (>=5.0.0 <=5.0.6)

django PYPI version =5.0.0, =0.0.0, =5.0.2.0, =0.0.15, =1.14.3, =0.0.20, =0.0.13, =0.0.19, =0.0.34, =0.0.50, =0.0.5, =0.0.11, =1.0.3, =0.1.0, =0.2.5 and more Source cves: CVE-2024-38875 Source advisory: OSV:PYSEC-2024-56...

1337x (=1.2.5), 170051277-trab-final-gces (>=0.3.0 <=0.5.0) +2103 more potentially affected by CVE-2024-39689 via certifi (>=2021.5.30 <=2024.6.2)

certifi PYPI version =2021.5.30, =0.3.0, =0.1.0, =0.2.1, =0.1.2, =1.0.0, =1.0.4, =1.0.11, =2.3.0, =1.0.0, =1.0.4 and more Source cves: CVE-2024-39689 Source advisory: OSV:PYSEC-2024-230...