205 matches found
UBUNTU-CVE-2025-15412
A security vulnerability has been detected in WebAssembly wabt up to 1.0.39. This issue affects the function wabt::Decompiler::VarName of the file /src/repro/wabt/bin/wasm-decompile of the component wasm-decompile. Such manipulation leads to out-of-bounds read. Local access is required to approac...
CVE-2025-15411
A weakness has been identified in WebAssembly wabt up to 1.0.39. This vulnerability affects the function wabt::AST::InsertNode of the file /src/repro/wabt/bin/wasm-decompile of the component wasm-decompile. This manipulation causes memory corruption. It is possible to launch the attack on the loc...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990360)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990360 advisory. In the Linux kernel, the following vulnerability has been resolved: ipvs: fix UB due to uninitialized stack access in ipvsprotocolinit Under certain kernel...
[SECURITY] Fedora 43 Update: mingw-python3-3.11.14-1.fc43
MinGW Windows python3...
Fedora 42 : mingw-binutils (2025-10c80b93e9)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-10c80b93e9 advisory. Backport fixes for CVE-2025-11082, CVE-2025-11083, CVE-2025-11494, CVE-2025-11495. Tenable has extracted the preceding description block directly fr...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.25-openssl (SUSE-SU-2025:03525-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:03525-1 advisory. Update to version 1.25.1, released 2025-09-03 bsc1244485. Security issues fixed: - CVE-2025-47910:...
SUSE-SU-2025:03525-1 Security update for go1.25-openssl
This update for go1.25-openssl fixes the following issues: Update to version 1.25.1, released 2025-09-03 bsc1244485. Security issues fixed: - CVE-2025-47910: net/http: CrossOriginProtection insecure bypass patterns not limited to exact matches bsc1249141. Other issues fixed: - go74822 cmd/go: 'ge...
EUVD-2005-0160
Malware in sbrugna...
EUVD-2023-32149
Malicious code in bioql PyPI...
EUVD-2023-50110
Malicious code in bioql PyPI...
EUVD-2023-43052
Malicious code in bioql PyPI...
CVE-2025-11083
CVE-2025-11083 affects GNU Binutils 2.45, specifically the linker component. The vulnerability is a heap-based overflow in the elf_swap_shdr function (bfd/elfcode.h) that requires local access to exploit. The advisory notes a patch was prepared and indicates fixes were made in version 2.46. Publi...
Security update for go1.25-openssl
This update for go1.25-openssl fixes the following issues: Update to version 1.25.0 cut from the go1.25-fips-release branch at the revision tagged go1.25.0-1-openssl-fips. jscSLE-18320 Rebase to 1.25.0 Fix HKDF-Extract The latest OpenSSL in c9s/c10s requires nil salt to be passed as a hash length...
SUSE-SU-2025:03115-1 Security update for go1.25-openssl
This update for go1.25-openssl fixes the following issues: Update to version 1.25.0 cut from the go1.25-fips-release branch at the revision tagged go1.25.0-1-openssl-fips. jscSLE-18320 Rebase to 1.25.0 Fix HKDF-Extract The latest OpenSSL in c9s/c10s requires nil salt to be passed as a hash length...
SUSE-SU-2025:02924-1 Security update for go1.25
go1.25 released 2025-08-12 is a major release of Go. go1.25.x minor releases will be provided through August 2026. https://github.com/golang/go/wiki/Go-Release-Cycle go1.25 arrives six months after Go 1.24. Most of its changes are in the implementation of the toolchain, runtime, and libraries. As...
SUSE-SU-2025:02837-1 Security update for go1.24-openssl
This update for go1.24-openssl fixes the following issues: Updated to go1.24.6 released 2025-08-06 bsc1236217: - CVE-2025-4674: Fixed unexpected command execution in untrusted VCS repositories in cmd/go bsc1246118 - CVE-2025-47906: Fixed incorrect expansion of '', '.' and '..' in some PATH...
Linux Distros Unpatched Vulnerability : CVE-2025-2584
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in WebAssembly wabt 1.0.36. It has been declared as critical. This vulnerability affects the function...
Malicious code in sunruse-influx-toolchain (npm)
The package sunruse-influx-toolchain was found to contain malicious code...
MAL-2025-34183 Malicious code in sunruse-influx-toolchain (npm)
The package sunruse-influx-toolchain was found to contain malicious code...
ROOT-OS-DEBIAN-12-CVE-2023-29934 CVE-2023-29934 in rootio-llvm-toolchain-14 - Patched by Root
Root has patched CVE-2023-29934 in the rootio-llvm-toolchain-14 package for Root:Debian:12. Multiple fixed versions available...