[SECURITY] Fedora 44 Update: dnf5-5.4.0.0-2.fc44

DNF5 is a command-line package manager that automates the process of installi ng, upgrading, configuring, and removing computer programs in a consistent manner. It supports RPM packages, modulemd modules, and comps groups & environments...

EUVD-2019-0088

Malware in sbrugna...

CVE-2017-1002157

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

new packages: modulemd-tools

An update is available for modulemd-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

modulemd-tools bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

modulemd-tools bug fix and enhancement update

An update is available for modulemd-tools. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

ALEA-2021:4152 modulemd-tools bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

modulemd uses an unsafe function for processing externally provided data

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

GHSA-JHJH-GHWX-6H7R modulemd uses an unsafe function for processing externally provided data

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

Remote Code Execution (RCE)

modulemd is vulnerable to remote code execution RCE. The vulnerability is possible because it is using insecure function yaml.loadall...

CVE-2017-1002157

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

Remote code execution

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

CVE-2017-1002157

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

PYSEC-2019-153

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

PYSEC-2019-153

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

CVE-2017-1002157

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

CVE-2017-1002157

CVE-2017-1002157 affects modulemd 1.3.1 and earlier. Root cause: an unsafe function used to process externally provided data, enabling remote code execution. Impact: remote code execution on vulnerable deployments. Affected versions are 1.3.1 and earlier. Remediation: upgrade to modulemd 1.3.2 or...

PT-2019-7860 · Modulemd · Modulemd

Name of the Vulnerable Software and Affected Versions: modulemd versions 1.3.1 and earlier Description: The issue is related to the use of an unsafe function for processing externally provided data, which can lead to remote code execution. Recommendations: For modulemd versions 1.3.1 and earlier,...

Fedora 29 : subscription-manager (2018-075821dc8f)

This is a primarily maintenance update. Please see the attached bugs for more specific details on what has improved as far as stability is concerned. There is also a larger new feature which is being released in concert with work being done in Katello / Foreman. Subscription-manager has a concept...

Fedora 28 : subscription-manager (2018-a675aa39fc)

This is a primarily maintenance update. Please see the attached bugs for more specific details on what has improved as far as stability is concerned. There is also a larger new feature which is being released in concert with work being done in Katello / Foreman. Subscription-manager has a concept...