Oracle Linux 8 : virt:ol / and / virt-devel:ol (ELSA-2026-5578)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-5578 advisory. - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 libguestfs - Fixes: CVE-2022-40284 - Fix CVE-2024-7383 NBD server improper certificate...

EUVD-2006-2005

Malware in sbrugna...

EUVD-2007-0125

Malware in sbrugna...

SUSE CVE-2022-49440

In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas: Keep MSRRI set when calling RTAS RTAS runs in real mode MSRDR and MSRIR unset and in 32-bit big endian mode MSRSF,LE unset. The change in MSR is done in enterrtas in a relatively complex way, since the MSR value cou...

Malicious code in @zalastax/nolb-react-ri (npm)

The package @zalastax/nolb-react-ri was found to contain malicious code...

MAL-2025-13738 Malicious code in @zalastax/nolb-react-ri (npm)

The package @zalastax/nolb-react-ri was found to contain malicious code...

DEBIAN-CVE-2022-49164

In the Linux kernel, the following vulnerability has been resolved: powerpc/tm: Fix more userspace r13 corruption Commit cf13435b730a "powerpc/tm: Fix userspace r13 corruption" fixes a problem in treclaim where a SLB miss can occur on the threadstruct-ckptregs while SCRATCH0 is live with the save...

CVE-2022-49440 powerpc/rtas: Keep MSR[RI] set when calling RTAS

In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas: Keep MSRRI set when calling RTAS RTAS runs in real mode MSRDR and MSRIR unset and in 32-bit big endian mode MSRSF,LE unset. The change in MSR is done in enterrtas in a relatively complex way, since the MSR value cou...

WordPress Doctor Appointment Booking Plugin <= 1.0.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Phat RiO - Fore-Z co.ltd in WordPress Plugin Doctor Appointment Booking versions = 1.0.0...

CVE-2023-4475

An Arbitrary File Movement vulnerability was found in ASUSTOR Data Master ADM allows an attacker to exploit the file renaming feature to move files to unintended directories. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...

GSD-2022-1006081 s390: fix double free of GS and RI CBs on fork() failure

s390: fix double free of GS and RI CBs on fork failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.257 by commit...

GSD-2022-1005740 s390: fix double free of GS and RI CBs on fork() failure

s390: fix double free of GS and RI CBs on fork failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.140 by commit...

GSD-2022-1005435 s390: fix double free of GS and RI CBs on fork() failure

s390: fix double free of GS and RI CBs on fork failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.64 by commit...

GSD-2022-1003351 powerpc/rtas: Keep MSR[RI] set when calling RTAS

powerpc/rtas: Keep MSRRI set when calling RTAS This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by commit...

GSD-2022-1003043 powerpc/rtas: Keep MSR[RI] set when calling RTAS

powerpc/rtas: Keep MSRRI set when calling RTAS This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...

GSD-2022-1002708 powerpc/rtas: Keep MSR[RI] set when calling RTAS

powerpc/rtas: Keep MSRRI set when calling RTAS This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...

biggamefishingri.com Improper Access Control vulnerability OBB-2425951

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

littlecomptonri.org Cross Site Scripting vulnerability OBB-2343848

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Updated hivex packages fix security vulnerability

Fixes limit recursion in ri-records. CVE-2021-3622...

com.github.ldeitos:extendedValidation-spring-boot-test-support (=2.0.0-Final), com.github.ldeitos:extendedValidation-test-support (>=0.9.3 <=2.0-RC2) +23 more potentially affected by CVE-2021-28170 via com.sun.el:el-ri (=1.0)

com.sun.el:el-ri MAVEN version =1.0 is affected by a known vulnerability. The following packages have a transitive dependency on com.sun.el:el-ri and may be impacted: - com.github.ldeitos:extendedValidation-spring-boot-test-support =2.0.0-Final - com.github.ldeitos:extendedValidation-test-support...