Lucene search
K

129 matches found

Vulnrichment
Vulnrichment
added 2026/05/09 3:59 a.m.8 views

CVE-2026-42301 Improper Input Validation leading to Improper Control of Generation of Code ('Code Injection') in pyp2spec

pyp2spec generates working Fedora RPM spec file for Python projects. Prior to version 0.14.1, pyp2spec was writing PyPI package metadata e.g. the summary field into the generated spec file without escaping RPM macro directives. When a packager then runs rpmbuild, those directives get evaluated, s...

7.8CVSS6AI score0.00197EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.18 views

PT-2026-37196

Name of the Vulnerable Software and Affected Versions pyp2spec versions prior to 0.14.1 Description pyp2spec writes PyPI package metadata, such as the summary field, into generated spec files without escaping RPM macro directives. When a packager uses tools like rpmbuild -bs, rpmbuild --nobuild, ...

7.8CVSS6.2AI score0.00197EPSS
Exploits0References8
Fedora
Fedora
added 2026/05/01 3:6 a.m.23 views

[SECURITY] Fedora 43 Update: pyp2spec-0.14.1-1.fc43

pyp2spec is a tech preview. It is a tool generating Fedora RPM spec files for Python distributions. It utilizes the benefits of pyproject-rpm-macros...

5.3AI score
Exploits0
Fedora
Fedora
added 2026/05/01 1:27 a.m.20 views

[SECURITY] Fedora 42 Update: pyp2spec-0.14.1-1.fc42

pyp2spec is a tech preview. It is a tool generating Fedora RPM spec files for Python distributions. It utilizes the benefits of pyproject-rpm-macros...

5.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/28 12:0 a.m.7 views

Oracle Linux 8 : python3.11 (ELSA-2026-11062)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-11062 advisory. 3.11.13-7.0.1 - Update rpm-macros description Orabug: 36024572 3.11.13-7 - Security fixes for CVE-2026-4786, CVE-2026-6100 Resolves: RHEL-168129,...

9.1CVSS5.4AI score0.00579EPSS
Exploits0References3
OSV
OSV
added 2026/04/23 5:54 p.m.12 views

CLSA-2026-1776966842 go-rpm-macros: Fix of CVE-2026-25679

CVE-2026-25679: rebuild against golang-1.25.7-1.tuxcare.els2 which contains the net/url IPv6 host-literal parsing fix...

7.5CVSS5.8AI score0.00728EPSS
Exploits0References1
Rockylinux
Rockylinux
added 2026/04/21 12:7 p.m.18 views

go-rpm-macros security update

An update is available for go-rpm-macros. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list This package provides build-stage rpm automation to simplify the...

7.5CVSS7.3AI score0.00728EPSS
Exploits0
OSV
OSV
added 2026/04/21 12:3 p.m.10 views

RLSA-2026:8841 Important: go-rpm-macros security update

This package provides build-stage rpm automation to simplify the creation of Go language golang packages. It does not need to be included in the default build root: go-srpm-macros will pull it in for Go packages only. Security Fixes: net/url: Incorrect parsing of IPv6 host literals in net/url...

7.5CVSS5.7AI score0.00728EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2026/04/21 12:3 p.m.13 views

go-rpm-macros security update

An update is available for go-rpm-macros. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list This package provides build-stage rpm automation to simplify the creati...

7.5CVSS7.3AI score0.00728EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.10 views

RockyLinux 9 : go-rpm-macros (RLSA-2026:8841)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:8841 advisory. net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 Tenable has extracted the preceding description block directly from the RockyLinux...

7.5CVSS7.4AI score0.00728EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.9 views

RockyLinux 10 : go-rpm-macros (RLSA-2026:8840)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:8840 advisory. net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 Tenable has extracted the preceding description block directly from the RockyLinux...

7.5CVSS7.4AI score0.00728EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

MiracleLinux 9 : go-rpm-macros-3.6.0-14.el9_7 (AXSA:2026-474:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-474:02 advisory. net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 Tenable has extracted the preceding description block directly from the MiracleLinu...

7.5CVSS7.4AI score0.00728EPSS
Exploits0References2
OSV
OSV
added 2026/04/20 10:12 a.m.6 views

RHSA-2026:8856 Red Hat Security Advisory: go-rpm-macros security update

Bulletin has no description...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References11
OSV
OSV
added 2026/04/20 10:12 a.m.9 views

RHSA-2026:8848 Red Hat Security Advisory: go-rpm-macros security update

Bulletin has no description...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References11
OSV
OSV
added 2026/04/20 10:12 a.m.5 views

RHSA-2026:8840 Red Hat Security Advisory: go-rpm-macros security update

Bulletin has no description...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References11
OSV
OSV
added 2026/04/20 10:12 a.m.11 views

RHSA-2026:8841 Red Hat Security Advisory: go-rpm-macros security update

Bulletin has no description...

7.5CVSS5.6AI score0.00728EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2026/04/20 2:53 a.m.10 views

Important: Red Hat Security Advisory: go-rpm-macros security update

An update for go-rpm-macros is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/04/20 2:48 a.m.11 views

Important: Red Hat Security Advisory: go-rpm-macros security update

An update for go-rpm-macros is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/04/20 12:48 a.m.5 views

Important: Red Hat Security Advisory: go-rpm-macros security update

An update for go-rpm-macros is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS5.7AI score0.00728EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/04/20 12:29 a.m.9 views

Important: Red Hat Security Advisory: go-rpm-macros security update

An update for go-rpm-macros is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS5.7AI score0.00728EPSS
Exploits0References2
Rows per page
Query Builder