This affects all versions of package node-latex-pdf.

Read More

This affects all versions of package gitblame. The injection point is located in line 15 in lib/gitblame.js.

Read More

This affects all versions of package heroku-env. The injection point is located in lib/get.js which is required by index.js.

Read More

This affects the package image-tiler before 2.0.2.

Read More

This affects all versions of package npos-tesseract. The injection point is located in line 55 in lib/ocr.js.

Read More

The package get-npm-package-version before 1.0.7 are vulnerable to Command Injection via main function in index.js.

Read More

Multiple vulnerabilities have been discovered in Google Android OS, the most severe of which could allow for remote code execution. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution. Depending on the privileges associated with the exploited component, an attacker could then install programs; view, change, or delete data; or create new accounts with full rights.

Read More

FEDORA-2022-1f829990f0

Packages in this update:

golang-1.18.5-1.fc36

Update description:

go1.18.5 includes security fixes to the encoding/gob and math/big packages, as well as bug fixes to the compiler, the go command, the runtime, and the testing package.

Upstream notes.

Read More

This vulnerability allows local attackers to disclose sensitive information on affected installations of NetBSD Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Read More

This vulnerability allows local attackers to disclose sensitive information on affected installations of NetBSD Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Read More