opentofu was added to epel10 repo on 2025-08-04
Page updated: 2025-11-12 13:03
Repo Status -
Overall Status
Source NVR: opentofu-1.10.3-1.el10_1 (2025-08-04)
| opentofu | opentofu-1.10.3-1.el10_1 |
| 2388882 | ON_QA | CVE-2025-8959 opentofu: HashiCorp go-getter Arbitrary File Read [epel-10] |
| 2390835 | ON_QA | opentofu: go-viper's mapstructure May Leak Sensitive Information in Logs [epel-10] |
| 2391604 | ON_QA | CVE-2025-58058 opentofu: github.com/ulikunitz/xz leaks memory [epel-10] |
| 2398306 | ON_QA | CVE-2025-47910 opentofu: CrossOriginProtection bypass in net/http [epel-10] |
| 2398942 | ON_QA | CVE-2025-47906 opentofu: Unexpected paths returned from LookPath in os/exec [epel-10] |
| 2399688 | NEW | CVE-2025-11065 opentofu: Go-viper's mapstructure May Leak Sensitive Information in Logs in github.com/go-viper/mapstructure [epel-10] |
| 2407491 | NEW | CVE-2025-58189 opentofu: go crypto/tls ALPN negotiation error contains attacker controlled information [epel-10] |
| 2408531 | NEW | CVE-2025-61725 opentofu: Excessive CPU consumption in ParseAddress in net/mail [epel-10] |
| 2408943 | NEW | CVE-2025-61723 opentofu: Quadratic complexity when parsing some invalid inputs in encoding/pem [epel-10] |
| 2409885 | NEW | CVE-2025-58185 opentofu: Parsing DER payload can cause memory exhaustion in encoding/asn1 [epel-10] |
| 2410825 | NEW | CVE-2025-58188 opentofu: Panic when validating certificates with DSA public keys in crypto/x509 [epel-10] |
| 2412490 | NEW | CVE-2025-58183 opentofu: Unbounded allocation when parsing GNU sparse map [epel-all] |