80 matches found
Security update for obs-service-recompress, obs-service-tar_scm (moderate)
openSUSE Security Update: Security update for obs-service-recompress, obs-service-tarscm Announcement ID: openSUSE-SU-2026:0109-1 Rating: moderate References: 1076410 1082696 1105361 1107507 1107944 1127353 1127907 1138377 1168573 1212476 1216361 927120 967265 Cross-References: CVE-2018-12473...
EUVD-2017-18210
Malware in sbrugna...
EUVD-2024-19637
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-9274
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A shell command injection in the obs-service-sourcevalidator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific...
OPENSUSE-SU-2025:14814-1 obs-service-cargo-4.5.0-2.1 on GA media
These are all security issues fixed in the obs-service-cargo-4.5.0-2.1 package on the GA media of openSUSE Tumbleweed...
SUSE-SU-2025:20071-1 Security update for sevctl
This update for sevctl fixes the following issues: Security issue fixed: - CVE-2023-50711: Fixed out of bounds memory accesses in a vendored dependency bsc1218502 Non-security issue fixed: - Update vendored dependencies and re-enable cargo update obs service bsc1229953...
CVE-2024-22033
The OBS service obs-service-downloadurl was vulnerable to a command injection vulnerability. The attacker could provide a configuration to the service that allowed to execute command in later steps...
CVE-2024-22033
CVE-2024-22033 affects the OBS service obs-service-download_url. The flaw is a command injection vulnerability where a configuration passed to the service can lead to command execution in subsequent steps. Public references confirm this impact and the vulnerable component is the obs-service-downl...
CVE-2024-22033 obs-service-download_url is vulnerable to argument injection
The OBS service obs-service-downloadurl was vulnerable to a command injection vulnerability. The attacker could provide a configuration to the service that allowed to execute command in later steps...
obs-service-cargo-1.3.6-5.1 on GA media (moderate)
obs-service-cargo-1.3.6-5.1 on GA media Announcement ID: openSUSE-SU-2024:14364-1 Rating: moderate Cross-References: CVE-2024-45405 CVSS scores: CVE-2024-45405 SUSE : 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2024-45405 SUSE : 7...
OPENSUSE-SU-2024:14364-1 obs-service-cargo-1.3.6-5.1 on GA media
These are all security issues fixed in the obs-service-cargo-1.3.6-5.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:14126-1 obs-service-download_url-0.2.1-1.1 on GA media
These are all security issues fixed in the obs-service-downloadurl-0.2.1-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:10108-1 obs-service-set_version-0.5.3-4.2 on GA media
These are all security issues fixed in the obs-service-setversion-0.5.3-4.2 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:11105-1 obs-service-refresh_patches-0.3.9+git.1625238904.d59f20e-1.2 on GA media
These are all security issues fixed in the obs-service-refreshpatches-0.3.9+git.1625238904.d59f20e-1.2 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:11106-1 obs-service-source_validator-0.21-1.3 on GA media
These are all security issues fixed in the obs-service-sourcevalidator-0.21-1.3 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:11107-1 obs-service-appimage-0.10.28.1632141620.a8837d3-1.1 on GA media
These are all security issues fixed in the obs-service-appimage-0.10.28.1632141620.a8837d3-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12740-1 obs-service-go_modules-0.6.1-1.1 on GA media
These are all security issues fixed in the obs-service-gomodules-0.6.1-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2022-45155
An Improper Handling of Exceptional Conditions vulnerability in obs-service-gomodules of openSUSE Factory allows attackers that can influence the call to the service to delete files and directories on the system of the victim. This issue affects: SUSE openSUSE Factory obs-service-gomodules versio...
CVE-2022-45155
An Improper Handling of Exceptional Conditions vulnerability in obs-service-gomodules of openSUSE Factory allows attackers that can influence the call to the service to delete files and directories on the system of the victim. This issue affects: SUSE openSUSE Factory obs-service-gomodules versio...
Design/Logic Flaw
An Improper Handling of Exceptional Conditions vulnerability in obs-service-gomodules of openSUSE Factory allows attackers that can influence the call to the service to delete files and directories on the system of the victim. This issue affects: SUSE openSUSE Factory obs-service-gomodules versio...