CVE-2021-4435 vulnerabilities

Vulnerabilities for packages: yarn...

GHSA-MPWJ-FCR6-X34C vulnerabilities

Vulnerabilities for packages: yarn...

GHSA-5XF4-F2FQ-F69J vulnerabilities

Vulnerabilities for packages: yarn...

CVE-2019-10773 vulnerabilities

Vulnerabilities for packages: yarn...

GHSA-WQFC-CR59-H64P vulnerabilities

Vulnerabilities for packages: yarn...

CVE-2019-15608 vulnerabilities

Vulnerabilities for packages: yarn...

GHSA-HJXC-462X-X77J vulnerabilities

Vulnerabilities for packages: yarn...

CVE-2019-5448 vulnerabilities

Vulnerabilities for packages: yarn...

CVE-2021-4435 vulnerabilities

Vulnerabilities for packages: yarn...

CVE-2019-10773 vulnerabilities

Vulnerabilities for packages: yarn...

CVE-2019-15608 vulnerabilities

Vulnerabilities for packages: yarn...

GHSA-MPWJ-FCR6-X34C vulnerabilities

Vulnerabilities for packages: yarn...

GHSA-5XF4-F2FQ-F69J vulnerabilities

Vulnerabilities for packages: yarn...

GHSA-HJXC-462X-X77J vulnerabilities

Vulnerabilities for packages: yarn...

GHSA-WQFC-CR59-H64P vulnerabilities

Vulnerabilities for packages: yarn...

CVE-2019-5448 vulnerabilities

Vulnerabilities for packages: yarn...

openSUSE 16 Security Update : syft (openSUSE-SU-2026:20928-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20928-1 advisory. Changes in syft: - Update to version 1.45.0: Added Features - Add support for ZapAddOns as jar files 4654 4932 @douglasclarke - MySQL binary classifier...

OPENSUSE-SU-2026:20928-1 Security update for syft

This update for syft fixes the following issues: Changes in syft: - Update to version 1.45.0: Added Features - Add support for ZapAddOns as jar files 4654 4932 @douglasclarke - MySQL binary classifier should distinguish between MySQL Cluster ndb and MySQL 3297 4907 @witchcraze - Catalog...

CVE-2026-45772

Turborepo is a high-performance build system for JavaScript and TypeScript codebases. From 1.1.0 to before 2.9.14, Turborepo can be vulnerable to arbitrary code execution when run in untrusted repositories that contain malicious Yarn configuration. In affected versions, package manager detection...

Untrusted Search Path

Overview @turbo/codemod is a Provides Codemod transformations to help upgrade your Turborepo codebase when a feature is deprecated. Affected versions of this package are vulnerable to Untrusted Search Path in the package manager detection. An attacker can execute arbitrary code by placing a...