asahi-installer was added to epel10 repo on 2025-05-08
Page updated: 2026-02-06 01:24
Repo Status -
Overall Status
Source NVR: asahi-installer-0.7.8-4.el10_1 (2025-05-08)
| python3-asahi_firmware | python3-asahi_firmware-0.7.8-4.el10_1 |
| 2384060 | NEW | CVE-2025-8194 asahi-installer: Cpython infinite loop when parsing a tarfile [epel-10] |
| 2402857 | NEW | CVE-2025-8291 asahi-installer: Python zipfile End of Central Directory (EOCD) Locator record offset not checked [epel-10] |
| 2413049 | NEW | CVE-2025-6075 asahi-installer: Quadratic complexity in os.path.expandvars() with user-controlled template [epel-10] |
| 2428927 | NEW | CVE-2025-13836 asahi-installer: Excessive read buffering DoS in http.client [epel-10] |
| 2431610 | NEW | CVE-2025-15366 asahi-installer: IMAP command injection in user-controlled commands [epel-10] |
| 2431634 | NEW | CVE-2025-15367 asahi-installer: POP3 command injection in user-controlled commands [epel-10] |
| 2431746 | NEW | CVE-2025-11468 asahi-installer: Missing character filtering in Python [epel-10] |
| 2431749 | NEW | CVE-2026-0672 asahi-installer: Header injection in http.cookies.Morsel in Python [epel-10] |
| 2431754 | NEW | CVE-2026-0865 asahi-installer: wsgiref.headers.Headers allows header newline injection in Python [epel-10] |
| 2431759 | NEW | CVE-2025-15282 asahi-installer: Header injection via newlines in data URL mediatype in Python [epel-10] |
| 2433810 | NEW | CVE-2026-1299 asahi-installer: email header injection due to unquoted newlines [epel-10] |