MAL-2026-5278 Malicious code in spateo-release (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 21400e8510d0663de6c3a4454fe99d9200cb83ae8d1ecdc137c99f3668da4293 Versions 1.1.2 were compromised. Compromised packages start an obfuscated infostealer. The infostealer is a heavily obfuscated JavaScript code executed using B...

RHSA-2026:2823 Red Hat Security Advisory: Updated discovery-cli release RPM versions 2.4.3

Bulletin has no description...

EUVD-2025-122100

Malicious code in semantic-release-cordelia-quark-update npm...

Malicious code in @marcos_feitoza/test-release (npm)

The package @marcosfeitoza/test-release was found to contain malicious code...

MAL-2025-9095 Malicious code in @marcos_feitoza/test-release (npm)

The package @marcosfeitoza/test-release was found to contain malicious code...

MAL-2025-32930 Malicious code in semantic-release-futurology-development-canopus (npm)

The package semantic-release-futurology-development-canopus was found to contain malicious code...

MAL-2025-838 Malicious code in ig-grunt-release (npm)

--- -= Per source details. Do not edit below this line.=-...

CVE-2024-7522 vulnerabilities

Vulnerabilities for packages: firefox-esr, firefox...

SUSE-SU-2023:3516-1 Security update for terraform

This update of terraform fixes the following issues: - rebuild the package with the go 1.21 security release bsc1212475...

Improper Authorization

gitlab is vulnerable to Improper Authorization. An attacker could exploit this vulnerability to update the status of an external status check to "success", even if the check has failed. This could cause GitLab to deploy code or release a package that is not ready, which could lead to security...

SUSE-SU-2023:2717-1 Security update for buildah

This update of buildah fixes the following issues: - rebuild the package with the go 1.20 security release bsc1206346...

OTFCC 安全漏洞

OTFCC is a C library and utility open sourced by Caryll. It is used to parse and write OpenType font files.OTFCC has a security vulnerability that stems from a package submitted by /release-x64/otfccdump 0x65f724 that contains the offending segment. No detailed vulnerability details are currently...

CloudBees Jenkins BMC Release Package and Deployment Plugin Code Execution Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A security vulnerability exis...

Centreon 19.10.5 Remote Command Execution

Exploit Title: Centreon 19.10.5 - Remote Command Execution Date: 2020-01-27 Exploit Author: Fabien AUNAY, Omri BASO Vendor Homepage: https://www.centreon.com/ Software Link: https://github.com/centreon/centreon Version: 19.10.5 Tested on: CentOS 7 CVE : - Centreon 19.10.5 Remote Command Execution...

Pivotal Cloud Foundry cf-release and UAA denial of service vulnerabilities

Pivotal Cloud Foundry CF is a suite of open source Platform-as-a-Service PaaS cloud computing platforms from Pivotal Software in the United States, which provides features such as container scheduling, continuous delivery, and automated service deployment. cf-release is a release of PCF. uaa is a...

Fedora Core 2 : xemacs-21.4.17-0.FC2 (2005-145)

Update to 21.4.17 stable release, which also fixes the CVE-2005-0100 movemail string format vulnerability. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as muc...