162 matches found
MAL-2025-2042 Malicious code in jfrog-docker-desktop-extension (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2b2db670bc2926b7aa07755c4117f98356231c45c33e8855fdd90de133d0e2e2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2022-49063
In the Linux kernel, the following vulnerability has been resolved: ice: arfs: fix use-after-free when freeing @rxcpurmap The CI testing bots triggered the following splat: 718.203054 BUG: KASAN: use-after-free in freeirqcpurmap+0x53/0x80 718.206349 Read of size 4 at addr ffff8881bd127e00 by task...
GHSA-P37P-C73M-G5CG vulnerabilities
Vulnerabilities for packages: openjdk-26-openj9, openjdk-25-openj9, openjdk-8-openj9, openjdk-11-openj9, openjdk-17-openj9, openjdk-21-openj9...
GHSA-RV66-33HX-33WJ vulnerabilities
Vulnerabilities for packages: mysql...
GHSA-8228-H98R-863Q vulnerabilities
Vulnerabilities for packages: mysql...
GHSA-PWMV-87GF-4Q8G vulnerabilities
Vulnerabilities for packages: mysql...
RHSA-2025:1516 Red Hat Security Advisory: libxml2 security update
Bulletin has no description...
MAL-2025-1010 Malicious code in dextester (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-847 Malicious code in llm_demo (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-801 Malicious code in analytics-passive-tracker (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-762 Malicious code in @douinfe/semi-illustrations (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-1103 Malicious code in custom-filter-link (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4dd97872144cfcf29d6340b6d2b80e3ed243255bdecaa0673d71da8598a5e5b4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1125 Malicious code in gateway-hsm-sample (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0749bb94e6b7e493b7f25152e4ebfc6d99b6e4e59fe32b075860382d66089417 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2025-22605 Coolify OS Command Injection Vulnerability in SSH Command Generation
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Starting in version 4.0.0-beta.18 and prior to 4.0.0-beta.253, a vulnerability in the execution of commands on remote servers allows an authenticated user to execute arbitrary code on the local...
DLA-4008-1 linux-6.1 - security update
Bulletin has no description...
BIT-NODE-MIN-2023-38552
When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...
FreeBSD : chromium -- multiple security fixes (3d5b7860-48ad-48c2-aa36-601b8ab9cc43)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 3d5b7860-48ad-48c2-aa36-601b8ab9cc43 advisory. Chrome Releases reports: This update includes 4 security fixes: Tenable has extracted the preceding...
MAL-2024-11503 Malicious code in wynn-and-encore (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11496 Malicious code in widget-session-sample (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11490 Malicious code in vulnerabledriver (npm)
--- -= Per source details. Do not edit below this line.=-...