VYPR

rpm package

suse/librepo&distro=SUSE Package Hub 15 SP2

pkg:rpm/suse/librepo&distro=SUSE%20Package%20Hub%2015%20SP2

Vulnerabilities (1)

  • CVE-2020-14352HigAug 30, 2020
    affected < 1.11.2-bp152.2.3.1fixed 1.11.2-bp152.2.3.1

    A flaw was found in librepo in versions before 1.12.1. A directory traversal vulnerability was found where it failed to sanitize paths in remote repository metadata. An attacker controlling a remote repository may be able to copy files outside of the destination directory on the