66 matches found
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005133)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005133 advisory. In the Linux kernel, the following vulnerability has been resolved: ELF: fix kernel.randomizevaspace double read ELF loader uses randomizevaspace twice. It is sysctl...
MAL-2025-187780 Malicious code in library-kronos-start-ceres (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 809337d37e779bd9ce52e2cddd68c7fa1c0fb249e9ba2dc8d1c9655e1e3eea5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185524 Malicious code in archaeogenetics-csrf-aquarius-perturbation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3bf298157c040760bce94b452e888389305beacf18b29f6f82b92ab32890e45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in namei-mla-anubuiau (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66c1e5a3e9045352e0d1968537865e6c9d072a268c6948a60cd557ec26e8c506 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-165657 Malicious code in saku-aiu-unianusu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b44133ac47e43aa19a4f25c32e0d8db273175f1fdc1b10e09d947c3347d553dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in masako-males-nurs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b61c7a02e88985dccb422b986925375aff9a99cb4d55da57ec5331042c0d86ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-152131 Malicious code in akabi-aliga-aihabamava (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fbcc45882b5f7f8f3fd9cd17dfb1cdff3f6173894f500749ab4118a6fb8428c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-115457 Malicious code in lina-lutis100-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65669d11830a6ed74a8af09146b94ee29a2bd8d96a07a9fe1aa008da4204c1e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cindy-tomat60-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa4252f667d75008694e79c70badf571ad9f85e7b7259d3b539003e66a89c026 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gita-getas70-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 328be0c27ed8e1aa9f091c61a23c3abb59555b602a8efd059551c94c44d732af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rudi-bubur42-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3fea44a83b4f4e803afaf4001c39e45ed12bc3eb760fc4692c5187e28b7ba66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
ShuffleV: A Microarchitectural Defense Strategy against Electromagnetic Side-Channel Attacks in Microprocessors
The run-time electromagnetic EM emanation of microprocessors presents a side-channel that leaks the confidentiality of the applications running on them. Many recent works have demonstrated successful attacks leveraging such side-channels to extract the confidentiality of diverse applications, suc...
EUVD-2023-56877
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2020-23273
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-buffer overflow in the randomizeiparp function in editpacket.c. of Tcpreplay v4.3.2 allows attackers to cause a denial of service DOS via a crafted pcap...
kernel: ELF: fix kernel.randomize_va_space double read
In the Linux kernel, the following vulnerability has been resolved: ELF: fix kernel.randomizevaspace double read ELF loader uses "randomizevaspace" twice. It is sysctl and can change at any moment, so 2 loads could see 2 different values in theory with unpredictable consequences. Issue exactly on...
CVE-2023-52204
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Javik Randomize.This issue affects Randomize: from n/a through 1.4.3...
CLSA-2025-1740071073 kernel: Fix of 5 CVEs
media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - ALSA: 6fire: Release resources at card release CVE-2024-53239 - drm/amdgpu: add missing size check in amdgpudebugfsgprwaveread CVE-2024-50282 - bpf: fix OOB devmap writes when deleting elements...
CLSA-2025-1738663576 kernel: Fix of 11 CVEs
ELF: fix kernel.randomizevaspace double read CVE-2024-46826 - smb: client: fix UAF in async decryption CVE-2024-50047 - SMB3: Resolve data corruption of TCP server info fields CVE-2024-50047 - smb3: add defines for new crypto algorithms CVE-2024-50047 - net: do not delay dstentriesadd in...
ntp: Fix of CVE-2020-13817
CVE-2020-13817: randomize transmit timestamp in client requests...
kernel: randomize_kstack: Improve entropy diffusion
This CVE has been marked as Rejected by the assigning CNA...