91 matches found
EUVD-1999-1498
Malware in sbrugna...
GHSA-J5CC-6RX8-FF96 vulnerabilities
Vulnerabilities for packages: python...
CVE-2025-52993
A race condition in the Nix, Lix, and Guix package managers enables changing the ownership of arbitrary files to the UID and GID of the build user e.g., nixbld or guixbuild. This affects Nix before 2.24.15, 2.26.4, 2.28.4, and 2.29.1; Lix before 2.91.2, 2.92.2, and 2.93.1; and Guix before...
GHSA-VCFJ-M4G8-J8JV vulnerabilities
Vulnerabilities for packages: chromium...
yelp security update
2:40.3-2.1 - Fix CVE-2025-3155 RHEL-85926...
Moderate: openssh security update
OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled CVE-2025-26465 For more...
CVE-2025-43973 vulnerabilities
Vulnerabilities for packages: cilium, cilium-fips...
CVE-2025-3620
Use after free in USB in Google Chrome prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2023-35789 vulnerabilities
Vulnerabilities for packages: rabbitmq-c...
CVE-2024-9392 vulnerabilities
Vulnerabilities for packages: firefox...
GHSA-8MXC-VQRQ-GCM8 vulnerabilities
Vulnerabilities for packages: jq...
GHSA-722W-734R-QG74 vulnerabilities
Vulnerabilities for packages: libarchive...
GHSA-94VH-GPHV-8PM8 vulnerabilities
Vulnerabilities for packages: deno, wasm-pack, nushell, pixi, fnm, geckodriver...
GHSA-MHWM-JH88-3GJF vulnerabilities
Vulnerabilities for packages: jruby, logstash, ruby...
CVE-2022-49569
In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ based transfer times out the bcm2835spihandleerr function is called. Since commit 1513ceee70f2 "spi: bcm2835: Drop dmapending flag" the...
CVE-2022-49061
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: stmmac: fix altrtsepcs function when using a fixed-link When using a fixed-link, the altrtsepcs driver crashes due to null-pointer dereference as no phydevice is provided to tsepcsfixmacspeed function. Fix this by...
GHSA-V488-9CVJ-5MX7 vulnerabilities
Vulnerabilities for packages: gitlab-pages, gitlab-cng...
CVE-2024-45341
A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...
CVE-2025-23090 vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-WPFP-CM49-9M9Q vulnerabilities
Vulnerabilities for packages: opentofu, terraform...