VYPR

rpm package

opensuse/gvfs&distro=openSUSE Leap 16.0

pkg:rpm/opensuse/gvfs&distro=openSUSE%20Leap%2016.0

Vulnerabilities (2)

  • CVE-2026-28296MedFeb 26, 2026
    affected < 1.59.90-160000.1.1fixed 1.59.90-160000.1.1

    A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed (CRLF) sequences. These unsanitized sequences allow the attacker to terminate intended

  • CVE-2026-28295MedFeb 26, 2026
    affected < 1.59.90-160000.1.1fixed 1.59.90-160000.1.1

    A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mode (PASV) response. The client unconditionally trusts this information and attempts to connect to the specified endpoint,