Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fixed a platform-device leak in bridgeplatformcreate. In the error case when calling bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/platformdeviceaddresources, release the failed ‘pdev’...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993027)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993027 advisory. In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in...

EUVD-2020-0988

Malware in sbrugna...

EUVD-2022-55574

Malicious code in bioql PyPI...

DEBIAN-CVE-2022-50281

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/ platformdeviceaddresources, release the failed 'pdev' or it will be lea...

UBUNTU-CVE-2022-50281

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/ platformdeviceaddresources, release the failed 'pdev' or it will be lea...

CVE-2022-50281 MIPS: SGI-IP27: Fix platform-device leak in bridge_platform_create()

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/ platformdeviceaddresources, release the failed 'pdev' or it will be lea...

CVE-2022-50281 MIPS: SGI-IP27: Fix platform-device leak in bridge_platform_create()

In the Linux kernel, the following vulnerability has been resolved: MIPS: SGI-IP27: Fix platform-device leak in bridgeplatformcreate In error case in bridgeplatformcreate after calling platformdeviceadd/platformdeviceadddata/ platformdeviceaddresources, release the failed 'pdev' or it will be lea...

PT-2025-37583

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a platform-device leak in the bridge platform create function when handling errors during device creation. Specifically, the vulnerability occurs when platform...

Directory Traversal in xtalk

Affected versions of xtalk are vulnerable to directory traversal, allowing access to the filesystem by placing "../" in the URL. Example request: http GET /../../../../../../../../../../etc/passwd HTTP/1.1 host:localhost Recommendation No patch is currently available for this vulnerability, and t...

xtalk-demo (>=0.0.2 <=0.0.8) potentially affected by CVE-2017-16091 via xtalk (>=0.0.3 <=0.0.5)

xtalk NPM version =0.0.3, =0.0.2, =0.0.8 Source cves: CVE-2017-16091 Source advisory: OSV:GHSA-CQV6-7FWC-8M3C...

GHSA-CQV6-7FWC-8M3C Directory Traversal in xtalk

Affected versions of xtalk are vulnerable to directory traversal, allowing access to the filesystem by placing "../" in the URL. Example request: http GET /../../../../../../../../../../etc/passwd HTTP/1.1 host:localhost Recommendation No patch is currently available for this vulnerability, and t...

xtalk directory traversal vulnerability

xtalk is a module to support browser communication with node x. A directory traversal vulnerability exists in xtalk. An attacker can exploit this vulnerability by placing a '... /' sequence in a URL to gain access to the file system...

Directory Traversal

xtalk is vulnerable to directory traversal attacks. The attacks is possible by requesting a url such as /..%2f..%2fetc/passwd to get sensitive information...

CVE-2017-16091

xtalk helps your browser talk to nodex, a simple web framework. xtalk is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL...

CVE-2017-16091

xtalk helps your browser talk to nodex, a simple web framework. xtalk is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL...

Directory traversal

xtalk helps your browser talk to nodex, a simple web framework. xtalk is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL...

CVE-2017-16091

CVE-2017-16091 concerns the xtalk module, which enables browser-to-node communication but suffers a directory traversal vulnerability. The issue allows an attacker to access the filesystem by injecting ../ sequences in the URL, as demonstrated in public advisories (e.g., example GET /../../../../...

CVE-2017-16091

xtalk helps your browser talk to nodex, a simple web framework. xtalk is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL...

Directory Traversal

Overview Affected versions of xtalk are vulnerable to directory traversal, allowing access to the filesystem by placing "../" in the URL. Proof of Concept GET /../../../../../../../../../../etc/passwd HTTP/1.1 host:localhost Recommendation No patch is currently available for this vulnerability, a...