Will It CVE Bugz With in epel9

Repo Status - Overall Status
Page updated: 2024-10-14 17:36

epel9

CVE Bugz

2264275 NEW unspecified CVE-2023-46136 python-werkzeug: high resource consumption leading to denial of service [epel-9]
2316303 ON_QA medium CVE-2024-9427 koji: Escape HTML tag characters in the query string [epel-all]
2316315 NEW high CVE-2024-25590 pdns: Crafted responses can lead to a denial of service due to cache inefficiencies in the Recursor [epel-all]
2316316 NEW high CVE-2024-25590 pdns-recursor: Crafted responses can lead to a denial of service due to cache inefficiencies in the Recursor [epel-all]
2316492 ON_QA high CVE-2024-47191 oath-toolkit: Local root exploit in a PAM module [epel-all]
2317099 NEW high CVE-2024-43363 cacti: Remote code execution via Log Poisoning in Cacti [epel-9]
2317102 NEW high CVE-2024-43362 cacti: Stored Cross-site Scripting (XSS) when creating external links in Cacti [epel-9]
2317106 NEW medium CVE-2024-43364 cacti: Stored Cross-site Scripting (XSS) when creating external links in Cacti [epel-9]
2317110 NEW medium CVE-2024-43365 cacti: Stored Cross-site Scripting (XSS) when creating external links in Cacti [epel-9]
2317460 NEW medium CVE-2024-9675 podman-tui: Buildah allows arbitrary directory mount [epel-all]
2317461 NEW medium CVE-2024-9675 prometheus-podman-exporter: Buildah allows arbitrary directory mount [epel-all]
2317490 NEW high CVE-2024-45160 lemonldap-ng: From NVD collector [epel-9]
2317756 NEW medium CVE-2024-48933 lemonldap-ng: XSS/HTML Injection login page when user contains special characters [epel-9]
2317787 NEW high CVE-2024-48949 mozjs78: Missing Validation in Elliptic's EDDSA Signature Verification [epel-9]
2317788 NEW high CVE-2024-48949 yarnpkg: Missing Validation in Elliptic's EDDSA Signature Verification [epel-9]
2318146 NEW high CVE-2024-8376 mosquitto: sending specific sequences of packets may trigger memory leak [epel-all]
2318167 NEW high [Major Incident] CVE-2024-21626 podman-tui: file descriptor leak [epel-9]
2318168 NEW high [Major Incident] CVE-2024-21626 prometheus-podman-exporter: file descriptor leak [epel-9]