VYPR

rpm package

opensuse/jgit&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/jgit&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2025-4949May 21, 2025
    affected < 5.11.0-2.1fixed 5.11.0-2.1

    In Eclipse JGit versions 7.2.0.202503040940-r and older, the ManifestParser class used by the repo command and the AmazonS3 class used to implement the experimental amazons3 git transport protocol allowing to store git pack files in an Amazon S3 bucket, are vulnerable to XML Exte

  • CVE-2023-4759Sep 12, 2023
    affected < 5.11.0-2.1fixed 5.11.0-2.1

    Arbitrary File Overwrite in Eclipse JGit <= 6.6.0 In Eclipse JGit, all versions <= 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a