VYPR

rpm package

suse/rust1.65&distro=SUSE Linux Enterprise Module for Development Tools 15 SP4

pkg:rpm/suse/rust1.65&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP4

Vulnerabilities (1)

  • CVE-2022-46176Jan 11, 2023
    affected < 1.65.0-150300.7.9.1fixed 1.65.0-150300.7.9.1

    Cargo is a Rust package manager. The Rust Security Response WG was notified that Cargo did not perform SSH host key verification when cloning indexes and dependencies via SSH. An attacker could exploit this to perform man-in-the-middle (MITM) attacks. This vulnerability has been