SUSE: Security Advisory (SUSE-SU-2025:03461-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2023-53648

In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97: Fix possible NULL dereference in sndac97mixer smatch error: sound/pci/ac97/ac97codec.c:2354 sndac97mixer error: we previously assumed 'rac97' could be null see line 2072 remove redundant assignment, return error if...

CVE-2025-59297

creationtimestamp| type| source ---|---|--- 2025-10-07 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-280-01 2025-10-27 04:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-969/...

EUVD-2017-1096

Malware in sbrugna...

EUVD-2017-1157

Malware in sbrugna...

EUVD-2022-54641

Malicious code in bioql PyPI...

EUVD-2022-54314

Malicious code in bioql PyPI...

icu security update

An update is available for icu. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The International Components for Unicode ICU library provides robust and...

CVE-2022-50433

In the Linux kernel, the following vulnerability has been resolved: efi: ssdt: Don't free memory if ACPI table was loaded successfully Amadeusz reports KASAN use-after-free errors introduced by commit 3881ee0b1edc "efi: avoid efivars layer when loading SSDTs from variables". The problem appears t...

编号撤回

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux in the United States. This CVE number has been withdrawn...

CVE-2025-59816

This vulnerability allows attackers to directly query the underlying database, potentially retrieving all data stored in the Billing Admin database, including user credentials. User passwords are stored in plaintext, significantly increasing the severity of this issue...

cde (=0.2.0.1), env-wrappers (>=0.1.1 <=0.1.22) +1 more potentially affected by CVE-2025-10951 via ml-logger (=0.10.36)

ml-logger PYPI version =0.10.36 is affected by a known vulnerability. The following packages have a transitive dependency on ml-logger and may be impacted: - cde =0.2.0.1 - env-wrappers =0.1.1, =0.1.22 - graph-search =0.1.0 Source cves: CVE-2025-10951 Source advisory: OSV:GHSA-8X9J-2P8R-7XC6...

CVE-2025-57971

creationtimestamp| type| source ---|---|--- 2025-09-24 15:52:47+00:00| seen| Telegram/Mf5ZzbFrwBc0zhQhV5HHZ9w0RKRuqK61Tvmq7zxG2kpvM...

42towels (>=0.1.1001 <=0.1.1011), aait (>=0.0.4.80 <=2.3.14) +214 more potentially affected by CVE-2025-55780 via pymupdf (>=1.24.0 <=1.26.7)

pymupdf PYPI version =1.24.0, =0.1.1001, =0.0.4.80, =0.1.3, =0.1.31, =0.1.0, =0.1.0, =0.0.5, =0.1.0, =0.1.1, =0.2.0, =0.11.0, =0.0.3, =0.1.178 and more Source cves: CVE-2025-55780 Source advisory: SNYK:PYTHON-PYMUPDF-13058632...

CVE-2025-39870

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix double free in idxdsetupwqs The clean up in idxdsetupwqs has had a couple bugs because the error handling is a bit subtle. It's simpler to just re-write it in a cleaner way. The issues here are: 1 If...

CVE-2023-53384

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: avoid possible NULL skb pointer dereference In 'mwifiexhandleuaprxforward', always check the value returned by 'skbcopy' to avoid potential NULL pointer dereference in 'mwifiexuapqueuebridgedpkt', and drop original...

BELL-CVE-2023-53299

Bulletin has no description...

RHEL 8 : udisks2 (RHSA-2025:16121)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:16121 advisory. The Udisks project provides a daemon, tools, and libraries to access and manipulate disks, storage devices, and technologies. Security Fixes: udisks...

CVE-2023-53295

In the Linux kernel, the following vulnerability has been resolved: udf: Do not update file length for failed writes to inline files When write to inline file fails or happens only partly, we still updated length of inline data as if the whole write succeeded. Fix the update of length of inline...

org.webjars.npm:bonjour (=3.5.0), org.webjars.npm:dns-packet (>=1.3.1 <=4.2.0) +10 more potentially affected by CVE-2024-29415 +1 more via org.webjars.npm:ip (>=1.1.5 <=2.0.0)

org.webjars.npm:ip MAVEN version =1.1.5, =1.3.1, =1.0.1, =6.2.3, =4.2.0, =1.1.10, =3.0.1, =4.0.2 - org.webjars.npm:splitsoftwaresplitio =10.8.4 Source cves: CVE-2024-29415, CVE-2025-59437 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-14101895...