Malicious code in @tonsdk/core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9a9a70e3d8b322df960cb96b195f74693eb4d2ea284680e4cfb41a33f1848f8 @tonsdk/core impersonates the legitimate @ton/core TON blockchain SDK. On npm install, scripts/postinstall.js executes automatically and performs two...

MiracleLinux 8 : open-vm-tools-12.3.5-2.el8_10.2 (AXBA:2026-083:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXBA:2026-083:01 advisory. - VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files...

MiracleLinux 9 : libvirt-10.0.0-6.2.el9.ML.1 (AXSA:2024-8065:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8065:03 advisory. The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2023-6448:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6448:01 advisory. QEMU: VNC: improper I/O watch removal in TLS handshake can lead to remote unauthenticated denial of service CVE-2023-3354 NTFS-3G: buffer overflow...

MiracleLinux 4 : libvirt-0.10.2-18.5.0.1.AXS4 (AXSA:2013-450:06)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-450:06 advisory. Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd...

MiracleLinux 4 : libguestfs-1.7.17-17.0.1.AXS4 (AXSA:2011-500:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-500:01 advisory. Libguestfs is a library for accessing and modifying guest disk images. Amongst the things this is good for: making batch configuration changes to guests,...

Important: Red Hat Security Advisory: open-vm-tools security update

An update for open-vm-tools is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scori...

ALSA-2025:17429 Important: open-vm-tools security update

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fixes: open-vm-tools: Local privilege escalation in open-vm-tools...

RHEL 9 : open-vm-tools (RHSA-2025:17445)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:17445 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization...

DLA-4316-1 open-vm-tools - security update

Bulletin has no description...

[SECURITY] Fedora 42 Update: open-vm-tools-12.5.2-1.fc42

The open-vm-tools project is an open source implementation of VMware Tools. It is a suite of open source virtualization utilities and drivers to improve the functionality, user experience and administration of VMware virtual machines. This package contains only the core user-space programs and...

open-vm-tools: SAML token signature bypass

A flaw was found in open-vm-tools. This flaw allows a malicious actor that has been granted Guest Operation Privileges in a target virtual machine to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias...

USN-6257-1 open-vm-tools vulnerability

It was discovered that Open VM Tools incorrectly handled certain authentication requests. A fully compromised ESXi host can force Open VM Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. CVE-2023-20867...

libvirt bug fix and enhancement update

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libvirt library contains a C API for managing and interacting with the...

The vulnerability of the daemon and the set of tools for managing virtualization via libvirt, which are related to pointer dereferencing errors, allow a perpetrator to trigger a service failure.

The vulnerability of the daemon and the set of tools for managing virtualization via Libvirt are related to an error in the storage pool selection based on its target path. Exploiting this vulnerability allows a remote attacker to trigger a service failure...

Low: Red Hat Bug Fix Advisory: open-vm-tools bug fix and enhancement update

Updated open-vm-tools packages that fix several bugs and add various enhancements are now available for Red Hat Enterprise Linux 7. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhanc...

PT-2011-5236 · Opensuse +4 · Systemtap-Client-Debuginfo +17

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.2.24 openSUSE systemtap-runtime-debuginfo affected versions not specified openSUSE systemtap-sdt-devel affected versions not specified openSUSE systemtap affected versions not specified openSUSE libvmtools0...