CVE-2025-14931

Affected software: Hugging Face smolagents. Vulnerability: Deserialization of untrusted data via parsing of pickle data, enabling Remote Code Execution. Root cause: improper validation of user-supplied data during pickle deserialization. Impact: attacker can execute code in the service account co...

RHSA-2025:23940 Red Hat Security Advisory: python3.12 security update

Bulletin has no description...

OPENSUSE-SU-2026:20000-1 Security update for salt

This update for salt fixes the following issues: Changes in salt: - Add minimumauthversion to enforce security CVE-2025-62349 - Backport security fixes for vendored tornado BDSA-2024-3438 BDSA-2024-3439 BDSA-2024-9026 - Junos module yaml loader fix CVE-2025-62348 - Require Python dependencies onl...

Malicious code in lanchain-openai (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4c312361541ed240dabd6df1f9cb9ed856a718dc8c8881f43bbacb429807e303 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

EUVD-2025-204780

Malicious code in lanchain-openai PyPI...

MAL-2025-192699 Malicious code in lanchain-openai (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4c312361541ed240dabd6df1f9cb9ed856a718dc8c8881f43bbacb429807e303 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in fire-eye-bcs (PyPI)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in fireeye-main (PyPI)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-192893 Malicious code in fireeye-main (PyPI)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-192892 Malicious code in fire-eye-bcs (PyPI)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in blastchamber-python-pypi (PyPI)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-192891 Malicious code in blastchamber-python-pypi (PyPI)

--- -= Per source details. Do not edit below this line.=-...

[SECURITY] Fedora 42 Update: mingw-python3-3.11.14-4.fc42

MinGW Windows python3...

[SECURITY] Fedora 43 Update: mingw-python3-3.11.14-4.fc43

MinGW Windows python3...

python315-3.15.0~a3-1.1 on GA media (moderate)

python315-3.15.0a3-1.1 on GA media Announcement ID: openSUSE-SU-2025:15840-1 Rating: moderate Cross-References: CVE-2025-12084 CVE-2025-13836 CVE-2025-13837 CVSS scores: CVE-2025-12084 SUSE : 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2025-12084 SUSE : 6.3...

ROS-20251223-7308

Vulnerability in python3.10 related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251223-7309

Vulnerability in python3.11 related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251223-7322

A vulnerability in the urllib.parse.urlsplit and urlparse functions of the Python programming language interpreter is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to affect data integrity...

ROS-20251223-7324

A vulnerability in the urllib.parse.urlsplit and urlparse functions of the Python programming language interpreter is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to affect data integrity...

ROS-20251223-7307

Vulnerability in python3 related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...