rpm package
opensuse/clojure&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/clojure&distro=openSUSE%20Tumbleweed
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-22871 | — | < 1.11.2.1446-1.1 | 1.11.2.1446-1.1 | Feb 29, 2024 | An issue in Clojure versions 1.20 to 1.12.0-alpha5 allows an attacker to cause a denial of service (DoS) via the clojure.core$partial$fn__5920 function. | ||
| CVE-2021-26291 | — | < 1.10.3.855-1.2 | 1.10.3.855-1.2 | Apr 23, 2021 | Apache Maven will follow repositories that are defined in a dependency’s Project Object Model (pom) which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be | ||
| CVE-2020-13956 | — | < 1.10.3.855-1.2 | 1.10.3.855-1.2 | Dec 2, 2020 | Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution. |
- CVE-2024-22871Feb 29, 2024affected < 1.11.2.1446-1.1fixed 1.11.2.1446-1.1
An issue in Clojure versions 1.20 to 1.12.0-alpha5 allows an attacker to cause a denial of service (DoS) via the clojure.core$partial$fn__5920 function.
- CVE-2021-26291Apr 23, 2021affected < 1.10.3.855-1.2fixed 1.10.3.855-1.2
Apache Maven will follow repositories that are defined in a dependency’s Project Object Model (pom) which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be
- CVE-2020-13956Dec 2, 2020affected < 1.10.3.855-1.2fixed 1.10.3.855-1.2
Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.