VYPR

rpm package

almalinux/go-fdo-server-manufacturer

pkg:rpm/almalinux/go-fdo-server-manufacturer

Vulnerabilities (2)

  • CVE-2026-32283HigApr 8, 2026
    affected < 1.0.1-1.el10_2fixed 1.0.1-1.el10_2

    If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.

  • CVE-2026-33816CriApr 7, 2026
    affected < 1.0.1-1.el10_2fixed 1.0.1-1.el10_2

    Memory-safety vulnerability in github.com/jackc/pgx/v5.