86 matches found
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection, as a cycle would result in a call stack overflow ctx-level = NFTJUMPSTACKSIZE. It also follows maps via -validate callback in...
coreruleset 4.21.0 - Firewall Bypass
Exploit Title: coreruleset 4.21.0 - Firewall Bypass Date: 04/08/2026 Exploit Author: Daytrift Newgen Vendor Homepage: https://github.com/coreruleset Software Link: https://github.com/coreruleset/coreruleset Version: 4.22.0/3.3.8 Tested on: Fedora, MacOS CVE : CVE-2026-21876 import base64 import o...
@accordproject/concerto-cli (=3.18.1-20251008112859), @accordproject/concerto-linter (>=3.22.1-20250716095953 <=3.24.1-20251209112947) potentially affected by unknown CVE via @accordproject/concerto-linter-default-ruleset (>=3.22.1-20250716095953 <=3.24.1-20251209112947)
@accordproject/concerto-linter-default-ruleset NPM version =3.22.1-20250716095953, =3.22.1-20250716095953, =3.24.1-20251209112947 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191173...
EUVD-2025-199348
Malicious code in @accordproject/concerto-linter-default-ruleset npm...
MAL-2025-191173 Malicious code in @accordproject/concerto-linter-default-ruleset (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9f48c313afcaf0a201a7b16889d968e2694c7e3751cc334b257de8f8084d9df The package @accordproject/concerto-linter-default-ruleset was found to contain malicious code. Source: ghsa-malware...
Malicious code in @zapier/spectral-api-ruleset (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3f10a9695952f169fff0da94ca1ea47045d97dd486857aad5dbc7b608e2316b The package @zapier/spectral-api-ruleset was found to contain malicious code. Source: google-open-source-security...
EUVD-2025-198908
Malicious code in @zapier/spectral-api-ruleset npm...
MAL-2025-190919 Malicious code in @zapier/spectral-api-ruleset (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3f10a9695952f169fff0da94ca1ea47045d97dd486857aad5dbc7b608e2316b The package @zapier/spectral-api-ruleset was found to contain malicious code. Source: google-open-source-security...
EUVD-2014-3024
Malware in sbrugna...
EUVD-2022-28190
Malicious code in bioql PyPI...
EUVD-2024-32056
Malicious code in bioql PyPI...
EUVD-2024-47449
Malicious code in bioql PyPI...
EUVD-2024-41603
Malicious code in bioql PyPI...
Malicious code in dependabot-ruleset-runner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bf6203024b7b15e14f8667f837a351ecd9b34c2298117e781b04de05af28cdc9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
kernel: netfilter: nf_tables: prefer nft_chain_validate
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection because a cycle will result in a call stack overflow ctx-level = NFTJUMPSTACKSIZE. It also follows maps via -validate callback in...
International Security Applications of Flexible Hardware-Enabled Guarantees
As AI capabilities advance rapidly, flexible hardware-enabled guarantees flexHEGs offer opportunities to address international security challenges through comprehensive governance frameworks. This report examines how flexHEGs could enable internationally trustworthy AI governance by establishing...
kernel: netfilter: nf_tables: prefer nft_chain_validate
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection because a cycle will result in a call stack overflow ctx-level = NFTJUMPSTACKSIZE. It also follows maps via -validate callback in...
kernel: netfilter: nf_tables: prefer nft_chain_validate
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection because a cycle will result in a call stack overflow ctx-level = NFTJUMPSTACKSIZE. It also follows maps via -validate callback in...
CVE-2024-45795 Suricata detect/datasets: reachable assertion with unimplemented rule option
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, rules using datasets with the non-functional / unimplemented "unset" option can trigger an assertion during traffic parsing, leading to denial of service...
SUSE CVE-2024-41042
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection because a cycle will result in a call stack overflow ctx-level = NFTJUMPSTACKSIZE. It also follows maps via -validate callback in...