6 matches found
Fedora 44 : yarnpkg (2026-db0c5d039c)
The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-db0c5d039c advisory. Update vendor bundle. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora 41 : yarnpkg (2025-b19f3ed5f4)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-b19f3ed5f4 advisory. Apply fixes for CVE-2025-8262 and CVE-2025-7783. Tenable has extracted the preceding description block directly from the Fedora security advisory...
Fedora 41 : yarnpkg (2025-d3dee9f37d)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-d3dee9f37d advisory. Update bundled pbkdf2 library. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...
Fedora 42 : yarnpkg (2025-96ff8c2897)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-96ff8c2897 advisory. Update bundled pbkdf2 library. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...
MGASA-2025-0194 Updated yarnpkg packages fix security vulnerabilities
CVE-2024-37890 yarnpkg: denial of service when handling a request with many HTTP headers. CVE-2024-48949 yarnpkg: Missing Validation in Elliptic's EDDSA Signature Verification. CVE-2024-12905 yarnpkg: link following and path traversal via maliciously crafted tar file And other vulnerabilities in...
Fedora 41 : yarnpkg (2025-8eb387668b)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-8eb387668b advisory. Fix CVE-2024-12905. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not teste...