MAL-2026-3549 Malicious code in @uipath/insights-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ace6d378b6abec995ee4d1fc628aa32dd0771f340a17fa2e91e2659868509681 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

EUVD-2026-28563

In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix kthread worker destruction in polling mode Fix the cleanup order in polling mode irq worklist and WARNON!listempty&worker-delayedworklist. The original code called kthreaddestroyworker before...

UBUNTU-CVE-2026-23278

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: always walk all pending catchall elements During transaction processing we might have more than one catchall element: 1 live catchall element and 1 pending element that is coming as part of the new batch. If...

CVE-2025-40163

In CVE-2025-40163, concrete details show a Linux kernel fix for sched/deadline: the dl_server must be stopped before a CPU goes offline to avoid a spurious hrtimer warning when a CPU is removed (drmgr -c cpu -r -q 1). The root cause was dl_server hrtimer enqueued near CPU offline, with cpu_presen...

EUVD-2022-55172

Malicious code in bioql PyPI...

Malicious code in @nstudio/angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c1b0ff1d36db43c5565d468f0ca83363bf446a3c5b645dcc6f125bcff4c65b7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Linux Distros Unpatched Vulnerability : CVE-2025-38009

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: mt76: disable napi on driver removal A warning on driver removal started occurring after commit 9dd05df8403b net: warn if NAPI instance wasn't shut down...

CVE-2025-38400 nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails.

In the Linux kernel, the following vulnerability has been resolved: nfs: Clean up /proc/net/rpc/nfs when nfsfsprocnetinit fails. syzbot reported a warning below 1 following a fault injection in nfsfsprocnetinit. 0 When nfsfsprocnetinit fails, /proc/net/rpc/nfs is not removed. Later, rpcprocexit...

CVE-2025-22026

In the Linux kernel, the following vulnerability has been resolved: nfsd: don't ignore the return code of svcprocregister Currently, nfsdprocstatinit ignores the return value of svcprocregister. If the procfile creation fails, then the kernel will WARN when it tries to remove the entry later. Fix...

PT-2025-16775 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: A vulnerability in the Linux kernel has been resolved. The issue occurs during a module removal, where kvm exit invokes arch-specific disable calls, which can lead to inconsistent...

SUSE CVE-2022-49525

In the Linux kernel, the following vulnerability has been resolved: media: cx25821: Fix the warning when removing the module When removing the module, we will get the following warning: 14.746697 removeprocentry: removing non-empty directory 'irq/21', leaking at least 'cx258211' 14.747449 WARNING...

MAL-2024-12000 Malicious code in maplibre (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 812bdb7f3cb3a09a616e906c456e223c0069b42451a78c0df8d032054ec3f6a1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

UBUNTU-CVE-2024-50057

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tipd: Free IRQ only if it was requested before In polling mode, if no IRQ was requested there is no need to free it. Call devmfreeirq only if client-irq is set. This fixes the warning caused by the tps6598x module...

SUSE CVE-2024-47709

In the Linux kernel, the following vulnerability has been resolved: can: bcm: Clear bo-bcmprocread after removeprocentry. syzbot reported a warning in bcmrelease. 0 The blamed change fixed another warning that is triggered when connect is issued again for a socket whose connected device has been...

MAL-2024-8078 Malicious code in milo_next (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ee245362f63331f1b4e4a74fe399d53c9d225ee7971ccfa881f720f8397fe4f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SUSE CVE-2024-36939

In the Linux kernel, the following vulnerability has been resolved: nfs: Handle error of rpcprocregister in nfsnetinit. syzkaller reported a warning 0 triggered while destroying immature netns. rpcprocregister was called in initnfsfs, but its error has been ignored since at least the initial comm...

PT-2024-27198

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37 Description A vulnerability in the Linux kernel has been resolved, related to the blk-iocost module. The issue occurs when the iocg pay debt function triggers a warning if the active list is empty, which i...

MAL-2024-1133 Malicious code in @testorgggg/pkg3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8fc010ecd5de64d5fe51070c4ad54606232adc162b0a60cdeff8f3ed883a834c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-228 Malicious code in wlwz-2312-0604 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d2ad1fbd0f24939513ab22226e41c6de9cd2b9cdd56c550df75ee5140c1c21db Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-296 Malicious code in wlwz-2312-1400 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25467d90d98e89ea4bae91203eef4b062209423919e0015c11cd88fd544ed43d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...