VYPR

rpm package

suse/rav1e&distro=SUSE Linux Enterprise Module for Basesystem 15 SP6

pkg:rpm/suse/rav1e&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6

Vulnerabilities (2)

  • CVE-2024-58266Jul 27, 2025
    affected < 0.6.6-150600.3.6.1fixed 0.6.6-150600.3.6.1

    The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection.

  • CVE-2024-12224May 30, 2025
    affected < 0.6.6-150600.3.3.1fixed 0.6.6-150600.3.3.1

    Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname.