VYPR

rpm package

opensuse/digger-cli&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/digger-cli&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2025-61729Dec 2, 2025
    affected < 0.6.143-1.1fixed 0.6.143-1.1

    Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a

  • CVE-2025-30204HigMar 21, 2025
    affected < 0.6.127-1.1fixed 0.6.127-1.1

    golang-jwt is a Go implementation of JSON Web Tokens. Starting in version 3.2.0 and prior to versions 5.2.2 and 4.5.2, the function parse.ParseUnverified splits (via a call to strings.Split) its argument (which is untrusted data) on periods. As a result, in the face of a maliciou