rpm package
opensuse/librepo&distro=openSUSE Leap 15.2
pkg:rpm/opensuse/librepo&distro=openSUSE%20Leap%2015.2
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-14352 | Hig | 8.0 | < 1.11.2-lp152.2.3.1 | 1.11.2-lp152.2.3.1 | Aug 30, 2020 | A flaw was found in librepo in versions before 1.12.1. A directory traversal vulnerability was found where it failed to sanitize paths in remote repository metadata. An attacker controlling a remote repository may be able to copy files outside of the destination directory on the |
- affected < 1.11.2-lp152.2.3.1fixed 1.11.2-lp152.2.3.1
A flaw was found in librepo in versions before 1.12.1. A directory traversal vulnerability was found where it failed to sanitize paths in remote repository metadata. An attacker controlling a remote repository may be able to copy files outside of the destination directory on the