rpm package
suse/rav1e&distro=SUSE Linux Enterprise Module for Basesystem 15 SP7
pkg:rpm/suse/rav1e&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-58266 | — | < 0.6.6-150600.3.6.1 | 0.6.6-150600.3.6.1 | Jul 27, 2025 | The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection. | ||
| CVE-2024-12224 | — | < 0.6.6-150600.3.3.1 | 0.6.6-150600.3.3.1 | May 30, 2025 | Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname. |
- CVE-2024-58266Jul 27, 2025affected < 0.6.6-150600.3.6.1fixed 0.6.6-150600.3.6.1
The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection.
- CVE-2024-12224May 30, 2025affected < 0.6.6-150600.3.3.1fixed 0.6.6-150600.3.3.1
Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname.