VYPR

rpm package

opensuse/afterburn&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/afterburn&distro=openSUSE%20Tumbleweed

Vulnerabilities (3)

  • CVE-2025-5791HigJun 6, 2025
    affected < 5.8.2-3.1fixed 5.8.2-3.1

    A flaw was found in the user's crate for Rust. This vulnerability allows privilege escalation via incorrect group listing when a user or process has fewer than exactly 1024 groups, leading to the erroneous inclusion of the root group in the access list.

  • CVE-2024-12224May 30, 2025
    affected < 5.9.0.git21.a73f509-2.1fixed 5.9.0.git21.a73f509-2.1

    Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname.

  • CVE-2025-3416LowApr 8, 2025
    affected < 5.7.0.git103.bae893c-1.1fixed 5.7.0.git103.bae893c-1.1

    A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the input as an empty string.