2286 matches found
CVE-2025-38629
Technical details about CVE-2025-38629 are not publicly available in the provided connected documents. The initial description mentions a NULL check in scarlett2, but no further technical specifics are provided. Monitor for updates.
CVE-2025-38629
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb: scarlett2: Fix missing NULL check scarlett2inputselectctlinfo sets up the string arrays allocated via kasprintf, but it misses NULL checks, which may lead to NULL dereference Oops. Let's add the proper NULL check...
CVE-2025-38629 ALSA: usb: scarlett2: Fix missing NULL check
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb: scarlett2: Fix missing NULL check scarlett2inputselectctlinfo sets up the string arrays allocated via kasprintf, but it misses NULL checks, which may lead to NULL dereference Oops. Let's add the proper NULL check...
CVE-2025-38629 ALSA: usb: scarlett2: Fix missing NULL check
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb: scarlett2: Fix missing NULL check scarlett2inputselectctlinfo sets up the string arrays allocated via kasprintf, but it misses NULL checks, which may lead to NULL dereference Oops. Let's add the proper NULL check...
PT-2025-34391
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the ALSA subsystem, specifically in the scarlett2 input select ctl info function. A missing NULL check when allocating string arrays via kasprin...
Linux Distros Unpatched Vulnerability : CVE-2022-23520
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. Prior to version 1.4.4, there is a possible XSS vulnerability with...
Linux Distros Unpatched Vulnerability : CVE-2020-7676
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - angular.js prior to 1.8.0 allows cross site scripting. The regex-based input HTML replacement may turn sanitized code into unsanitized one. Wrapping elements in...
Linux Distros Unpatched Vulnerability : CVE-2022-50088
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/damon/reclaim: fix potential memory leak in damonreclaiminit damonreclaiminit allocates a...
MAL-2025-22079 Malicious code in h1-cli-ext-iam-project-select (npm)
The package h1-cli-ext-iam-project-select was found to contain malicious code...
MAL-2025-19028 Malicious code in dyna-travel-ui-select-air-trip (npm)
The package dyna-travel-ui-select-air-trip was found to contain malicious code...
Malicious code in react-pdd-select (npm)
The package react-pdd-select was found to contain malicious code...
MAL-2025-27472 Malicious code in ng2-select-dev (npm)
The package ng2-select-dev was found to contain malicious code...
MAL-2025-31845 Malicious code in react-pdd-select (npm)
The package react-pdd-select was found to contain malicious code...
Malicious code in ng2-select-dev (npm)
The package ng2-select-dev was found to contain malicious code...
Malicious code in dyna-travel-ui-select-air-trip (npm)
The package dyna-travel-ui-select-air-trip was found to contain malicious code...
Malicious code in edc-ng2-select (npm)
The package edc-ng2-select was found to contain malicious code...
h1-cli-device-browser (>=1.0.1-alpha.0 <=1.0.1-alpha.1), h1-cli-device-node (>=1.0.1-alpha.0 <=1.0.1-alpha.1) potentially affected by unknown CVE via h1-cli-ext-iam-project-select (=1.0.1-alpha.1)
h1-cli-ext-iam-project-select NPM version =1.0.1-alpha.1 is affected by a known vulnerability. The following packages have a transitive dependency on h1-cli-ext-iam-project-select and may be impacted: - h1-cli-device-browser =1.0.1-alpha.0, =1.0.1-alpha.0, =1.0.1-alpha.1 Source cves: unknown CVE...
brick-node (>=0.0.0 <=0.0.17), change-object (=0.0.0) +9 more potentially affected by unknown CVE via pause-function (=0.0.1)
pause-function NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on pause-function and may be impacted: - brick-node =0.0.0, =1.16.0, =0.0.0, =1.0.1 - stream-format =0.0.3 Source cves: unknown CVE Source advisory: OSV:MAL-2025-28923...
MAL-2025-37598 Malicious code in ui-select-infinity-master (npm)
The package ui-select-infinity-master was found to contain malicious code...
Malicious code in h1-cli-ext-iam-project-select (npm)
The package h1-cli-ext-iam-project-select was found to contain malicious code...