rpm package
almalinux/go-fdo-server-manufacturer
pkg:rpm/almalinux/go-fdo-server-manufacturer
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-32283 | Hig | 7.5 | < 1.0.1-1.el10_2 | 1.0.1-1.el10_2 | Apr 8, 2026 | If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3. | |
| CVE-2026-33816 | Cri | 9.8 | < 1.0.1-1.el10_2 | 1.0.1-1.el10_2 | Apr 7, 2026 | Memory-safety vulnerability in github.com/jackc/pgx/v5. |
- affected < 1.0.1-1.el10_2fixed 1.0.1-1.el10_2
If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.
- affected < 1.0.1-1.el10_2fixed 1.0.1-1.el10_2
Memory-safety vulnerability in github.com/jackc/pgx/v5.