WORM vfs module does not block overwrites

Description The vfsworm module is intended to make files immutable over SMB a short time after they are created. The time window in which they are writable is configurable, defaulting to one hour. The hook that handles renames was checking that the file being renamed was still mutable, but it was...

ACL Rename Permission Bypass in Team Folders Allows Unauthorized File Renames

None...

GHSA-445C-VH5M-36RJ Apache Log4j Core: log injection in `Rfc5424Layout` due to silent configuration incompatibility

Apache Log4j Core's Rfc5424Layout, in versions 2.21.0 through 2.25.3, is vulnerable to log injection via CRLF sequences due to undocumented renames of security-relevant configuration attributes. Two distinct issues affect users of stream-based syslog services who configure Rfc5424Layout directly:...

UBUNTU-CVE-2026-34478

Apache Log4j Core's Rfc5424Layout https://logging.apache.org/log4j/2.x/manual/layouts.htmlRFC5424Layout , in versions 2.21.0 through 2.25.3, is vulnerable to log injection via CRLF sequences due to undocumented renames of security-relevant configuration attributes. Two distinct issues affect user...

CVE-2026-34478

CVE-2026-34478 (Log4j Core) affects Apache Log4j Core 2.21.0 through 2.25.3 and involves CRLF log-injection risks in stream-based syslog output due to undocumented renames of configuration attributes in Rfc5424Layout. Specifically, the newLineEscape attribute was silently renamed, breaking newlin...

CVE-2026-34478 Apache Log4j Core: Log injection in Rfc5424Layout due to silent configuration incompatibility

Apache Log4j Core's Rfc5424Layout https://logging.apache.org/log4j/2.x/manual/layouts.htmlRFC5424Layout , in versions 2.21.0 through 2.25.3, is vulnerable to log injection via CRLF sequences due to undocumented renames of security-relevant configuration attributes. Two distinct issues affect user...

PT-2026-31940

Apache Log4j Core's Rfc5424Layout https://logging.apache.org/log4j/2.x/manual/layouts.htmlRFC5424Layout , in versions 2.21.0 through 2.25.3, is vulnerable to log injection via CRLF sequences due to undocumented renames of security-relevant configuration attributes. Two distinct issues affect user...

Malicious code in noteasonfnsource (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fa2242ec1849ffa55a55c85b7781623cdc7147b8568b3beaa5d2b3b956c04e17 Code provides a Discord bot, which - once a generic command is called - performs malicious action against the Discord server: deletes all channels, renames the...

MAL-2026-1098 Malicious code in noteasonfnsource (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fa2242ec1849ffa55a55c85b7781623cdc7147b8568b3beaa5d2b3b956c04e17 Code provides a Discord bot, which - once a generic command is called - performs malicious action against the Discord server: deletes all channels, renames the...

OESA-2026-1303 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: ptrring: do not block hard interrupts in ptrringresizemultiple Jakub added a lockdepassertnohardirq check in pagepoolputpage to increase test coverage. syzbot...

CVE-2025-68736

In the Linux kernel, the following vulnerability has been resolved: landlock: Fix handling of disconnected directories Disconnected files or directories can appear when they are visible and opened from a bind mount, but have been renamed or moved from the source of the bind mount in a way that...

PT-2025-53002

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel landlock subsystem had a flaw in how it handled disconnected directories. These directories could appear when files or directories were accessed through a bind mount but...

Malicious code in masv-ilimo-civufavia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e34fa4126df0dd3235f52a217d7693aa03197886498c77162149b5e3e5d00f80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184667 Malicious code in oliobc-uyg-ugafih (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 288259eb6705a661c986f6c6ad638355875fa79c0d5af2a9b874c9b4d41b1f0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-176591 Malicious code in nuilva-avm-rucasva (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8feb5566256aa67fe83bb1789c41b51967fe165ba2198501429030730bfe5761 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-157447 Malicious code in kapaogfao-safa-agada (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae7180dc028ae3db4c32b0ec88f517a269162a25f51331e4773b3c53dad4a6b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-162789 Malicious code in nokire-lokcek35 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1483dea53ce65da1654b1f723c6d3b09027334bf23fb5b8203f3d21725dec6e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-150914 Malicious code in @miptaa02/reya (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f555e866ee0ade359fb443b2f7caabbdb5371a108b5d758f614b4fe7b3f3600b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-135453 Malicious code in maman-mieayam76-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c2aa81af2e080bcbeb05a1d7cb4ca5ac912e5e543ddb69821f5bbcb86f68f55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nurul-keripik45-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1769e1a0d884e99b4535c4f1478e45e7732a3234fa3f722b3ac7f6d662ab726e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...