VYPR

rpm package

opensuse/cockpit-subscriptions&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/cockpit-subscriptions&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2026-25547CriFeb 4, 2026
    affected < 14.4-4.1fixed 14.4-4.1

    @isaacs/brace-expansion is a hybrid CJS/ESM TypeScript fork of brace-expansion. Prior to version 5.0.1, @isaacs/brace-expansion is vulnerable to a denial of service (DoS) issue caused by unbounded brace range expansion. When an attacker provides a pattern containing repeated nume

  • CVE-2025-13465MedJan 21, 2026
    affected < 14.4-2.1fixed 14.4-2.1

    Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the _.unset and _.omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes. The issue permits deletion of properties but does not allow overwritin