yarnpkg was added to epel8 repo on 2023-01-13
Page updated: 2024-04-20 17:48
Repo Status -
Overall Status
Source NVR: yarnpkg-1.22.19-2.el8 (2023-01-13)
| yarnpkg | yarnpkg-1.22.19-2.el8 |
| 2220677 | NEW | CVE-2023-26136 yarnpkg: tough-cookie: prototype pollution in cookie memstore [epel-all] |
| 2222350 | NEW | CVE-2022-38900 yarnpkg: decode-uri-component: improper input validation resulting in DoS [epel-8] |
| 2222512 | NEW | CVE-2022-25883 yarnpkg: nodejs-semver: Regular expression denial of service [epel-all] |
| 2246630 | NEW | CVE-2023-46234 yarnpkg: browserify-sign: upper bound check issue in dsaVerify leads to a signature forgery attack [epel-all] |