SUSE CVE-2026-46155

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...

CVE-2026-44461 Zed: Remote Command Injection via Unquoted Environment Variable Keys (SSH / WSL Remote)

Zed is a code editor. Prior to 0.227.1, Zed builds SSH/WSL remote commands as a shell command string that starts with exec env ..., but environment variable keys are inserted without shell quoting or validation. If an attacker can control an environment variable key for example via project termin...

DEBIAN-CVE-2026-31614

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in checkwsleas The bounds check uses u8 ea + nlen + 1 + vlen as the end of the EA name and value, but eadata sits at offset sizeofstruct smb2filefulleainfo = 8 from ea, not at offset 0. The...

CVE-2026-31614 smb: client: fix off-by-8 bounds check in check_wsl_eas()

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in checkwsleas The bounds check uses u8 ea + nlen + 1 + vlen as the end of the EA name and value, but eadata sits at offset sizeofstruct smb2filefulleainfo = 8 from ea, not at offset 0. The...

CVE-2026-31614

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in checkwsleas The bounds check uses u8 ea + nlen + 1 + vlen as the end of the EA name and value, but eadata sits at offset sizeofstruct smb2filefulleainfo = 8 from ea, not at offset 0. The...

Linux WSL via Startup Folder Persistence

This module establishes persistence by creating a payload in the windows startup folder from within the Windows Subsystem for Linux WSL environment. This allows for code execution on Windows user login. Verified on Windows 10 with Ubuntu 24.04 WSL distribution. Module Options msf use...

Malicious Package

Overview si-wsl is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

Malicious code in si-wsl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f69e85a7d134f9914d7c06214a1e54622c4cd2548036f89a7de197a219cb598a The package si-wsl was found to contain malicious code. Source: ghsa-malware 883fa40693e776d8efd0a25d3d0cb70348f12f2226eaf627c28c490b46790973 Any...

MAL-2026-716 Malicious code in si-wsl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f69e85a7d134f9914d7c06214a1e54622c4cd2548036f89a7de197a219cb598a The package si-wsl was found to contain malicious code. Source: ghsa-malware 883fa40693e776d8efd0a25d3d0cb70348f12f2226eaf627c28c490b46790973 Any...

EUVD-2021-30769

Malicious code in bioql PyPI...

EUVD-2025-25308

Malicious code in bioql PyPI...

PT-2025-32234 · Microsoft · Windows Subsystem For Linux

Name of the Vulnerable Software and Affected Versions: WSL version 2.5.10 Description: Microsoft addressed a critical security flaw in Windows Subsystem for Linux WSL. Details about the issue were initially withheld but are scheduled for release on August 12. Recommendations: Update to version...

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo

sudopatchCVE-2025-32463 Mr.CIA's manual patching guide for C...

PenguinTrace - Tool To Show How Code Runs At The Hardware Level

penguinTrace is intended to help build an understanding of how programs run at the hardware level. It provides a way to see what instructions compile to, and then step through those instructions and see how they affect machine state as well as how this maps back to variables in the original...

The vulnerability of the Visual Studio Code WSL extension, related to improper code generation management, allows a malicious actor to execute arbitrary code.

The vulnerability of the Visual Studio Code WSL extension is related to improper handling of code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created request from a remote location...

Improper Privilege Management in shelljs

Impact Output from the synchronous version of shell.exec may be visible to other users on the same system. You may be affected if you execute shell.exec in multi-user Mac, Linux, or WSL environments, or if you execute shell.exec as the root user. Other shelljs functions including the asynchronous...

Security Update for Microsoft Visual Studio Code Remote WSL Extension (December 2021)

The Microsoft Visual Studio Code Remote Windows Subsystem for Linux WSL extension is prior to version 0.63.11. It is, therefore, affected by a remote code execution vulnerability. An unauthenticated, remote attacker can exploit this to execute arbitrary code on the system with privileges of the...

CVE-2021-43907

Visual Studio Code WSL Extension Remote Code Execution Vulnerability...

CVE-2021-43907

Visual Studio Code WSL Extension Remote Code Execution Vulnerability...

Remote code execution

Visual Studio Code WSL Extension Remote Code Execution Vulnerability...