EUVD-2026-2660

Malicious code in clipcord PyPI...

MAL-2026-253 Malicious code in clipcord (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fca6ce37489de021bfea975a55751ad244552b7868a4e534f955d30a0efb1770 Package collects and exfiltrates Discord credentials from multiple sources --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

EUVD-2026-2661

Malicious code in solana-program PyPI...

MAL-2026-252 Malicious code in solana-program (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b7f4afe6d0bf016660b9bcd20e900d4d0504af8c3ac7f7dc69f20229ebcddb21 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

EUVD-2026-2662

Malicious code in soupclaw PyPI...

RHSA-2026:0354 Red Hat Security Advisory: python3.12 security update

Bulletin has no description...

RHSA-2026:0355 Red Hat Security Advisory: python3.12 security update

Bulletin has no description...

[SECURITY] [DSA 6099-1] python-parsl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6099-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 14, 2026 https://www.debian.org/security/faq -...

Malicious code in transitive-req (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d7b45680b49152176403af486a0af997c20d1eaa8179a69b8e5c3ee65a41e35a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

EUVD-2026-2663

Malicious code in transitive-req PyPI...

MAL-2026-250 Malicious code in transitive-req (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d7b45680b49152176403af486a0af997c20d1eaa8179a69b8e5c3ee65a41e35a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense Forces

The Computer Emergency Response Team of Ukraine CERT-UA has disclosed details of new cyber attacks targeting its defense forces with malware known as PLUGGYAPE between October and December 2025. The activity has been attributed with medium confidence to a Russian hacking group tracked as Void...

MiracleLinux 3 : python-2.4.3-46.2.0.1.AXS3 (AXSA:2012-569:02)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-569:02 advisory. Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules,...

Security Update for Azure Core shared client library for Python < 1.38.0 (January 2026)

The Azure Core shared client library for Python installation on the remote host is missing a security update. It is, therefore, affected by an elevation of privilege vulnerability CVE-2026-21226. - An attacker who successfully exploited this vulnerability could gain elevated privileges by...

MiracleLinux 4 : python-paste-script-1.7.3-5.AXS4 (AXSA:2012-895:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-895:01 advisory. Paster is pluggable command-line frontend, including commands to setup package file layouts Built-in features: Creating file layouts for packages. For instanc...

MiracleLinux 4 : qpid-tools-0.14-6.AXS4, qpid-qmf-0.14-14.AXS4, qpid-cpp-0.14-22.AXS4, python-qpid-0.14-11.AXS4 (AXSA:2012-1014:04)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-1014:04 advisory. qpid-tools: Management and diagnostic tools for Apache Qpid brokers and clients. qpid-qmf-: An extensible management framework layered on Qpid messaging...

MiracleLinux 3 : gnome-python2-extras-2.14.2-7.AXS3 (AXSA:2010-371:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2010-371:01 advisory. The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python...

MiracleLinux 3 : python-2.4.3-24.1AXS3 (AXSA:2009-270:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2009-270:01 advisory. Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes,...

MiracleLinux 4 : abrt-2.0.8-6.0.1.AXS4, btparser-0.16-3.AXS4, libreport-2.0.9-5.0.1.AXS4, python-meh-0.12.1-3.AXS4 (AXSA:2012-870:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-870:02 advisory. Description of problem: abrt abrt is a tool to help users to detect defects in applications and to create a bug report with all informations needed b...

Debian dsa-6099 : python-parsl-doc - security update

The remote Debian 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6099 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6099-1 [email protected] https://www.debian.org/security/ Moritz...