VYPR

rpm package

suse/yomi-formula&distro=SUSE Manager Server Module 4.1

pkg:rpm/suse/yomi-formula&distro=SUSE%20Manager%20Server%20Module%204.1

Vulnerabilities (2)

  • CVE-2020-13692Jun 4, 2020
    affected < 0.0.1+git.1604593202.a2c22bf-3.6.5fixed 0.0.1+git.1604593202.a2c22bf-3.6.5

    PostgreSQL JDBC Driver (aka PgJDBC) before 42.2.13 allows XXE.

  • CVE-2020-11022MedApr 29, 2020
    affected < 0.0.1+git.1595952633.b300be2-3.3.6fixed 0.0.1+git.1595952633.b300be2-3.3.6

    In jQuery starting with 1.12.0 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.