VYPR

rpm package

suse/rmt-server&distro=SUSE Linux Enterprise Module for Server Applications 15 SP7

pkg:rpm/suse/rmt-server&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP7

Vulnerabilities (2)

  • CVE-2025-46727May 7, 2025
    affected < 2.23-150700.3.6.1fixed 2.23-150700.3.6.1

    Rack is a modular Ruby web server interface. Prior to versions 2.2.14, 3.0.16, and 3.1.14, `Rack::QueryParser` parses query strings and `application/x-www-form-urlencoded` bodies into Ruby data structures without imposing any limit on the number of parameters, allowing attackers

  • CVE-2025-32441May 7, 2025
    affected < 2.23-150700.3.6.1fixed 2.23-150700.3.6.1

    Rack is a modular Ruby web server interface. Prior to version 2.2.14, when using the `Rack::Session::Pool` middleware, simultaneous rack requests can restore a deleted rack session, which allows the unauthenticated user to occupy that session. Rack session middleware prepares the