caddy Info

caddy was added to epel8 repo on 2023-08-24
Page updated: 2024-04-20 17:48
Repo Status - Overall Status

Source NVR: caddy-2.6.4-2.el8 (2023-08-24)

Binary Packages

caddy caddy-2.6.4-2.el8

Bugs

2246579 NEW CVE-2023-45142 caddy: opentelemetry-go-contrib: DoS vulnerability in otelhttp [epel-all]
2248218 NEW caddy: golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-39325) [epel-all]
2257827 NEW CVE-2023-49295 caddy: quic-go: memory exhaustion attack against QUIC's path validation mechanism [epel-8]
2268279 NEW TRIAGE CVE-2024-27304 caddy: pgx: SQL Injection via Protocol Message Size Overflow [epel-all]
2268467 NEW TRIAGE CVE-2024-27289 caddy: pgx: SQL Injection via Line Comment Creation [epel-all]
2268872 NEW CVE-2024-28180 caddy: jose-go: improper handling of highly compressed data [epel-all]
2273514 NEW TRIAGE CVE-2024-22189 caddy: quic-go: memory exhaustion attack against QUIC's connection ID mechanism [epel-all]
2273515 NEW TRIAGE CVE-2024-22189 caddy: quic-go: memory exhaustion attack against QUIC's connection ID mechanism [epel-8]

Install Failures