[SECURITY] [DSA 6281-1] gnutls28 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6281-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 19, 2026 https://www.debian.org/security/faq -...

EUVD-2018-11882

Malware in sbrugna...

EUVD-2016-1039

Malware in sbrugna...

EUVD-2020-0124

Malware in sbrugna...

EUVD-2024-26943

Malicious code in bioql PyPI...

EUVD-2024-18215

Malicious code in bioql PyPI...

EUVD-2022-32620

Malicious code in bioql PyPI...

EUVD-2022-48321

Malicious code in bioql PyPI...

EUVD-2024-28085

Malicious code in bioql PyPI...

curl: OpenSSL HTTP/3 bogus CURLINFO_TLS_SSL_PTR

Summary: curleasygetinfo CURLINFOTLSSSLPTR appears to return invalid SSL connection pointer for OpenSSL HTTP/3 connections. Using this SSL connection results in a crash, and potential other impacts. This issue does not happen with libcurl 8.14.1, suggesting that the bug is in libcurl itself or...

OpenSSL Toolkit 3.2.5

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. This is the 3.2 release supported until 23rd November 2025...

CVE-2024-20500

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. This vulnerability is due to insufficient resource...

CVE-2022-28166

In Brocade SANnav version before SANN2.2.0.2 and Brocade SANNav before 2.1.1.8, the implementation of TLS/SSL Server Supports the Use of Static Key Ciphers ssl-static-key-ciphers on ports 443 & 18082...

CVE-2022-22885

Hutool v5.7.18's HttpRequest was discovered to ignore all TLS/SSL certificate validation...

CVE-2010-2977

Cisco Unified Wireless Network UWN Solution 7.x before 7.0.98.0 does not properly implement TLS and SSL, which has unspecified impact and remote attack vectors, aka Bug ID CSCtd01611...

CVE-2024-29969

When a Brocade SANnav installation is upgraded from Brocade SANnav v2.2.2 to Brocade SANnav 2.3.0, TLS/SSL weak message authentication code ciphers are added by default for port 18082...

RHEL 6 : rh-postgresql95-postgresql (RHSA-2017:2425)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:2425 advisory. PostgreSQL is an advanced object-relational database management system DBMS. The following packages have been upgraded to a later upstream...

CVE-2024-30149

HCL AppScan Source = 10.6.0 does not properly validate a TLS/SSL certificate for an executable...

CVE-2024-30149

CVE-2024-30149 affects HCL AppScan Source versions 10.6.0 and earlier, with a root cause of improper validation of a TLS/SSL certificate for an executable. Public sources consistently state the issue in the AppScan Source

CVE-2024-30149 HCL AppScan Source is affected by an expired TLS/SSL certificate

HCL AppScan Source = 10.6.0 does not properly validate a TLS/SSL certificate for an executable...