Malicious code in rocket-sync-jovian-charon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da6a723023ff0c85d131e2709f401499111bc5defade3c49268b9fbb808d47c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123371

Malicious code in process-fornax-local-sync npm...

Malicious code in avior-sync-enif-protractor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89e3a83c0ebc9b62ac07880fd2b7ee24acf354995ffbb017c950d19e49d7f208 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-122440

Malicious code in rocket-sync-jovian-charon npm...

EUVD-2025-121505

Malicious code in sync-envconfig-apollo-postcss npm...

EUVD-2025-121511

Malicious code in sync-centauri-impulse-selenium npm...

EUVD-2025-121497

Malicious code in sync-relay-rocket-scripts npm...

EUVD-2025-121510

Malicious code in sync-centaurus-gacrux-ursa npm...

EUVD-2025-121808

Malicious code in spectron-juno-sync-venus npm...

Malicious code in leda-npm-chai-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cf16bec19825fcb8796255ce3e4faa961efe40d86c0ee3f1bb66bf1526ccb26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-120510

Malicious code in websockets-dactyl-element-ui-sync npm...

Malicious code in proxima-vortex-buffer-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52486fb9b8c443812e90f249479354ead4215bfd779e8b4540f4a7ff76bf0e6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in got-sadr-mocha-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40d82631c478969a084a95044f545da8cde4bbd9f304f27c6bded05d9020213a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-124395

Malicious code in node-sass-antares-gulp-sync npm...

MAL-2025-149664 Malicious code in xenon-sync-despina-heka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 369147ecc3fd9f002d219d214dbb663fca66744f31c9b335a4d8d3c6307092d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149339 Malicious code in webdriver-manager-yakutsk-meteor-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 875fff606ab52451855235f1681354d08bcefb6c29a25fd69abbfd5a0fdd9a05 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143170 Malicious code in halley-sync-colors-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a315129aea4bbc0df37718edecba7ea88cb3534b2df5ef52e798db334c6e3d04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142987 Malicious code in got-sadr-mocha-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40d82631c478969a084a95044f545da8cde4bbd9f304f27c6bded05d9020213a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

CVE-2025-11458

Heap buffer overflow in Sync in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

kernel: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor_sync

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmtremoveadvmonitorsync This fixes the following crash: ================================================================== BUG: KASAN: slab-use-after-free in...