Malicious code in testpurpleteaming (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e4cc49d59c07354a2817163d4e569b1f6d2e6cf17c5c7fb0135bc5feebdfea4e Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-191895 Malicious code in testpurpleteaming (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e4cc49d59c07354a2817163d4e569b1f6d2e6cf17c5c7fb0135bc5feebdfea4e Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990460)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990460 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix freeing of uninitialized misc IRQ vector When VSI set up failed in i40eprobe as part of...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990387)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990387 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix call trace in setuptxdescriptors After PF reset and ethtool -t there was call trace in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990494)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990494 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix potential NULL pointer dereference in fclportptpsetup fclportptpsetup did not...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989126)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989126 advisory. In the Linux kernel, the following vulnerability has been resolved: tick/nohz: unexport init-annotated ticknohzfullsetup EXPORTSYMBOL and init is a bad combination...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989586)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989586 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix call trace in setuptxdescriptors After PF reset and ethtool -t there was call trace in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988717)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988717 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: Fix NULL deref in sethvtscchangecb if Hyper-V setup fails Check for a valid hvvpindex...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990104)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990104 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Prevent buffer overflow in setup handler Setup function uvcfunctionsetup permit...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989713)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989713 advisory. In the Linux kernel, the following vulnerability has been resolved: um: Fix out-of-bounds read in LDT setup syscallstubdata expects the datacount parameter to be the...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988843)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988843 advisory. In the Linux kernel, the following vulnerability has been resolved: mips: ralink: fix a refcount leak in illaccofsetup ofnodeputnp needs to be called when pdev ==...

Lexmark Printers Improper Authentication (CVE-2021-44736)

The initial admin account setup wizard on Lexmark devices allow unauthenticated access to the out of service erase feature. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989555)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989555 advisory. In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix NULL deref in qethclearworkingpoollist When qethsetonline calls...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989284)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989284 advisory. In the Linux kernel, the following vulnerability has been resolved: rtc: cmos: Fix event handler registration ordering issue Because acpiinstallfixedeventhandler...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989888)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989888 advisory. In the Linux kernel, the following vulnerability has been resolved: bonding: stop the device in bondsetupbyslave Commit 9eed321cde22 net: lapbether: only support...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: scsi: libiscsi: Initialize iscsiconn-dddata only if memory is allocated. In the case of an ibfastregmr allocation failure during iSER setup, the system may encounter a panic because iscsiconn-dddata is initialized unconditionally...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: nfs: Clean up /proc/net/rpc/nfs when nfsfsprocnetinit fails. The syzbot reported a warning below 1 after a fault injection in nfsfsprocnetinit. 0 When nfsfsprocnetinit fails, /proc/net/rpc/nfs is not removed. Later, rpcprocexit...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: ksmbd: The race condition related to PreauhHashValue has been fixed. If a client sends multiple session setup requests to ksmbd, a race condition related to PreauhHashValue may occur. There is no need to free sess-PreauhHashValue...

CVE-2025-64385

The equipment initially can be configured using the manufacturer's application, by Wi-Fi, by the web server or with the manufacturer’s software. Using the manufacturer's software, the device can be configured via UDP. Analyzing this communication, it has been observed that any aspect of the initi...

CVE-2024-14012

Potential privilege escalation issue in Revenera InstallShield version 2023 R1 running a renamed Setup.exe on Windows. When a local administrator executes a renamed Setup.exe, the MPR.dll may get loaded from an insecure location and can result in a privilege escalation. The issue has been fixed i...