Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fixed a platform-device leak in bridgeplatformcreate. In the error case when calling bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/platformdeviceaddresources, release the failed ‘pdev’...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993027)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993027 advisory. In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in...

EUVD-2020-0988

Malware in sbrugna...

EUVD-2022-55574

Malicious code in bioql PyPI...

DEBIAN-CVE-2022-50281

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/ platformdeviceaddresources, release the failed 'pdev' or it will be lea...

UBUNTU-CVE-2022-50281

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/ platformdeviceaddresources, release the failed 'pdev' or it will be lea...

CVE-2022-50281 MIPS: SGI-IP27: Fix platform-device leak in bridge_platform_create()

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/ platformdeviceaddresources, release the failed 'pdev' or it will be lea...

CVE-2022-50281 MIPS: SGI-IP27: Fix platform-device leak in bridge_platform_create()

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/ platformdeviceaddresources, release the failed 'pdev' or it will be lea...

PT-2025-37583

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a platform-device leak in the bridge platform create function when handling errors during device creation. Specifically, the vulnerability occurs when platform...

xtalk-demo (>=0.0.2 <=0.0.8) potentially affected by CVE-2017-16091 via xtalk (>=0.0.3 <=0.0.5)

xtalk NPM version =0.0.3, =0.0.2, =0.0.8 Source cves: CVE-2017-16091 Source advisory: OSV:GHSA-CQV6-7FWC-8M3C...

Directory Traversal in xtalk

Affected versions of xtalk are vulnerable to directory traversal, allowing access to the filesystem by placing "../" in the URL. Example request: http GET /../../../../../../../../../../etc/passwd HTTP/1.1 host:localhost Recommendation No patch is currently available for this vulnerability, and t...

GHSA-CQV6-7FWC-8M3C Directory Traversal in xtalk

Affected versions of xtalk are vulnerable to directory traversal, allowing access to the filesystem by placing "../" in the URL. Example request: http GET /../../../../../../../../../../etc/passwd HTTP/1.1 host:localhost Recommendation No patch is currently available for this vulnerability, and t...

xtalk directory traversal vulnerability

xtalk is a module to support browser communication with node x. A directory traversal vulnerability exists in xtalk. An attacker can exploit this vulnerability by placing a '... /' sequence in a URL to gain access to the file system...

Directory Traversal

xtalk is vulnerable to directory traversal attacks. The attacks is possible by requesting a url such as /..%2f..%2fetc/passwd to get sensitive information...

CVE-2017-16091

xtalk helps your browser talk to nodex, a simple web framework. xtalk is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL...

CVE-2017-16091

xtalk helps your browser talk to nodex, a simple web framework. xtalk is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL...

Directory traversal

xtalk helps your browser talk to nodex, a simple web framework. xtalk is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL...

CVE-2017-16091

CVE-2017-16091 concerns the xtalk module, which enables browser-to-node communication but suffers a directory traversal vulnerability. The issue allows an attacker to access the filesystem by injecting ../ sequences in the URL, as demonstrated in public advisories (e.g., example GET /../../../../...

CVE-2017-16091

xtalk helps your browser talk to nodex, a simple web framework. xtalk is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL...

Directory Traversal

Overview Affected versions of xtalk are vulnerable to directory traversal, allowing access to the filesystem by placing "../" in the URL. Proof of Concept GET /../../../../../../../../../../etc/passwd HTTP/1.1 host:localhost Recommendation No patch is currently available for this vulnerability, a...