VYPR

rpm package

opensuse/prometheus-postgres_exporter&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/prometheus-postgres_exporter&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2022-46146Nov 29, 2022
    affected < 0.10.1-2.1fixed 0.10.1-2.1

    Prometheus Exporter Toolkit is a utility package to build exporters. Prior to versions 0.7.2 and 0.8.2, if someone has access to a Prometheus web.yml file and users' bcrypted passwords, they can bypass security by poisoning the built-in authentication cache. Versions 0.7.2 and 0.

  • CVE-2022-21698Feb 15, 2022
    affected < 0.10.1-6.1fixed 0.10.1-6.1

    client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. In client_golang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounde