VYPR

rpm package

suse/rust1.65&distro=SUSE Linux Enterprise Real Time 15 SP3

pkg:rpm/suse/rust1.65&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3

Vulnerabilities (1)

  • CVE-2022-46176Jan 11, 2023
    affected < 1.65.0-150300.7.9.1fixed 1.65.0-150300.7.9.1

    Cargo is a Rust package manager. The Rust Security Response WG was notified that Cargo did not perform SSH host key verification when cloning indexes and dependencies via SSH. An attacker could exploit this to perform man-in-the-middle (MITM) attacks. This vulnerability has been