rpm package
suse/spacewalk-reports&distro=SUSE Manager Server Module 4.2
pkg:rpm/suse/spacewalk-reports&distro=SUSE%20Manager%20Server%20Module%204.2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-29409 | — | < 4.2.8-150300.3.12.3 | 4.2.8-150300.3.12.3 | Aug 2, 2023 | Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to <= 8192 bits. Based on a survey of publicly trusted RSA keys, there are curr | ||
| CVE-2020-25638 | — | < 4.2.7-150300.3.9.1 | 4.2.7-150300.3.9.1 | Dec 2, 2020 | A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access u |
- CVE-2023-29409Aug 2, 2023affected < 4.2.8-150300.3.12.3fixed 4.2.8-150300.3.12.3
Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to <= 8192 bits. Based on a survey of publicly trusted RSA keys, there are curr
- CVE-2020-25638Dec 2, 2020affected < 4.2.7-150300.3.9.1fixed 4.2.7-150300.3.9.1
A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access u