org.apache.karaf.config:org.apache.karaf.config.command (>=3.0.0 <=3.0.10), org.apache.karaf.features:standard (>=4.0.0 <=4.2.16) +3 more potentially affected by CVE-2019-0226 via org.apache.karaf.config:org.apache.karaf.config.core (>=3.0.0 <=4.2.4)

org.apache.karaf.config:org.apache.karaf.config.core MAVEN version =3.0.0, =3.0.0, =4.0.0, =13.0, =13.12 Source cves: CVE-2019-0226 Source advisory: OSV:GHSA-FJW4-39PG-VF4F...

OESA-2021-1295 kf5-kconfig security update

KDE Frameworks 5 Tier 1 addon with advanced configuration system made of two parts: KConfigCore and KConfigGui. Security Fixes: In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to...