jfrog-cli Info

jfrog-cli was added to epel9 repo on 2025-08-29
Page updated: 2026-04-26 16:46
Repo Status - Overall Status

Source NVR: jfrog-cli-2.78.3-2.el9 (2025-08-29)

Binary Packages

jfrog-cli

jfrog-cli-2.78.3-2.el9

Bugs

2403136	ON_QA	CVE-2025-11579 jfrog-cli: RarDecode Out Of Memory Crash [epel-9]
2420569	ON_QA	CVE-2025-47913 jfrog-cli: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS [epel-9]
2421867	ON_QA	CVE-2025-66564 jfrog-cli: Sigstore Timestamp Authority: Denial of Service via excessive OID or Content-Type header parsing [epel-9]
2432197	ON_QA	CVE-2026-23831 jfrog-cli: Rekor denial of service [epel-9]
2433101	ON_QA	CVE-2026-23991 jfrog-cli: go-tuf client DoS via malformed server response [epel-9]
2433104	ON_QA	CVE-2026-23992 jfrog-cli: go-tuf improperly validates the configured threshold for delegations [epel-9]
2433535	ON_QA	CVE-2026-24117 jfrog-cli: Rekor Server-Side Request Forgery (SSRF) [epel-9]
2433572	ON_QA	CVE-2026-24137 jfrog-cli: sigstore legacy TUF client allows for arbitrary file writes with target cache path traversal [epel-9]
2434246	ON_QA	CVE-2026-24686 jfrog-cli: go-tuf Path Traversal in TAP 4 Multirepo Client Allows Arbitrary File Write via Malicious Repository Names [epel-9]
2452365	ON_QA	CVE-2026-32285 jfrog-cli: github.com/buger/jsonparser: Denial of Service via malformed JSON input [epel-all]
2454524	ON_QA	CVE-2026-34165 jfrog-cli: go-git: Denial of Service via crafted .idx file [epel-all]
2454525	ON_QA	CVE-2026-33762 jfrog-cli: go-git: Denial of Service via crafted Git index file [epel-all]
2455638	ON_QA	CVE-2026-34986 jfrog-cli: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object [epel-all]

Install Failures