2182 matches found
EUVD-2022-6439
Malicious code in bioql PyPI...
EUVD-2025-22264
Malicious code in bioql PyPI...
EUVD-2023-27698
Malicious code in bioql PyPI...
EUVD-2025-26519
Malicious code in bioql PyPI...
EUVD-2022-34705
Malicious code in bioql PyPI...
EUVD-2022-1725
Malicious code in bioql PyPI...
php security update
An update is available for php. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PHP is an HTML-embedded scripting language commonly used with the Apache HTTP...
phar wrapper can occur dos when using quine gzip file
...
AlmaLinux 8 : php:8.2 (ALSA-2025:15687)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:15687 advisory. php: Leak partial content of the heap through heap buffer over-read in mysqlnd CVE-2024-8929 php: Single byte overread with convert.quoted-printable-deco...
CLSA-2025-1758034087 kernel: Fix of 24 CVEs
tls: always refresh the queue when reading sock CVE-2025-38471 - Bluetooth: hcicore: Fix use-after-free in vhciflush CVE-2025-38250 - i2c/designware: Fix an initialization issue CVE-2025-38380 - wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds CVE-2025-38159 - mm/hugetlb:...
CVE-2023-53224
In the Linux kernel, the following vulnerability has been resolved: ext4: Fix function prototype mismatch for ext4featktype With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure the call...
DEBIAN-CVE-2023-53224
In the Linux kernel, the following vulnerability has been resolved: ext4: Fix function prototype mismatch for ext4featktype With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure the call...
DEBIAN-CVE-2022-50288
In the Linux kernel, the following vulnerability has been resolved: qlcnic: prevent -dcb use-after-free on qlcnicdcbenable failure adapter-dcb would get silently freed inside qlcnicdcbenable in case qlcnicdcbattach would return an error, which always happens under OOM conditions. This would lead ...
UBUNTU-CVE-2023-53224
In the Linux kernel, the following vulnerability has been resolved: ext4: Fix function prototype mismatch for ext4featktype With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure the call...
CVE-2023-53224
CVE-2023-53224 details (Linux kernel): The issue arises in ext4 where the release handler was set to kfree, which had an incompatible function prototype under clang KFIs. A wrapper with the correct prototype fixes the mismatch. The root cause is a function-prototype mismatch surfaced by Clang’s -...
CVE-2023-53224 ext4: Fix function prototype mismatch for ext4_feat_ktype
In the Linux kernel, the following vulnerability has been resolved: ext4: Fix function prototype mismatch for ext4featktype With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure the call...
Embedded Malicious Code
Overview @ctrl/qbittorrent is a TypeScript api wrapper for qBittorrent using ofetch Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including...
PT-2025-37665
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue related to a function prototype mismatch within the ext4 module. Specifically, the ext4 feat ktype function was setting the "release" handler to kfre...
php: Streams HTTP wrapper does not fail for headers with invalid name and no colon
A flaw was found in PHP. This vulnerability allows applications to accept invalid headers via malformed HTTP headers missing a colon :, which may confuse applications into processing them as valid headers...
php: Stream HTTP wrapper header check might omit basic auth header
A flaw was found in PHP. This vulnerability allows certain headers to be either not sent or misinterpreted due to insufficient validation of the end-of-line characters via user-supplied headers...