opentofu was added to epel9 repo on 2024-03-09
Page updated: 2025-03-31 01:59
Repo Status -
Overall Status
Source NVR: opentofu-1.6.2-1.el9 (2024-03-09)
| opentofu | opentofu-1.6.2-1.el9 |
| 2331931 | NEW | CVE-2024-45337 opentofu: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto [epel-9] |
| 2333215 | NEW | CVE-2024-45338 opentofu: Non-linear parsing of case-insensitive content in golang.org/x/net/html [epel-9] |
| 2339347 | NEW | CVE-2025-0377 opentofu: HashiCorp go-slug Vulnerable to Zip Slip Attack [epel-9] |
| 2348789 | NEW | CVE-2025-22868 opentofu: Unexpected memory consumption during token parsing in golang.org/x/oauth2 [epel-9] |
| 2350760 | NEW | CVE-2025-22869 opentofu: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh [epel-9] |
| 2351902 | NEW | CVE-2025-22870 opentofu: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net [epel-9] |
| 2354396 | NEW | CVE-2025-30204 opentofu: jwt-go allows excessive memory allocation during header parsing [epel-9] |