VYPR

rpm package

suse/osc&distro=SUSE Linux Enterprise Software Development Kit 12 SP5

pkg:rpm/suse/osc&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Vulnerabilities (3)

  • CVE-2024-22034MedOct 16, 2024
    affected < 0.183.0-15.18.1fixed 0.183.0-15.18.1

    Attackers could put the special files in .osc into the actual package sources (e.g. _apiurl). This allows the attacker to change the configuration of osc for the victim

  • CVE-2019-3681Jun 29, 2020
    affected < 0.162.1-15.9.1fixed 0.162.1-15.9.1

    A External Control of File Name or Path vulnerability in osc of SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Software Development Kit 12-SP5, SUSE Linux Enterprise Software Development Kit 12-SP4; openSUSE Leap 15.1, openSUSE Factory allowed remote

  • CVE-2019-3685Nov 5, 2019
    affected < 0.182.0-15.12.1fixed 0.182.0-15.12.1

    Open Build Service before version 0.165.4 diddn't validate TLS certificates for HTTPS connections with the osc client binary