Extra Packages For Enterprise Linux Security Vulnerabilities and Issues — Extra Packages For Enterprise Linux CVE List

Lucene search

FedoraprojectExtra Packages For Enterprise Linux

3 matches found

CVE•added 2022/04/20 10:15 a.m.•353 views

CVE-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input.

7.5CVSS9.4AI score0.00111EPSS

CVE•added 2022/04/26 4:15 p.m.•120 views

CVE-2022-24882

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). In versions prior to 2.7.0, NT LAN Manager (NTLM) authentication does not properly abort when someone provides and empty password value. This issue affects FreeRDP based RDP Server implementations. RDP clients are not affected. ...

9.1CVSS8.7AI score0.00163EPSS

CVE•added 2022/04/19 5:15 p.m.•119 views

CVE-2022-25648

The package git before 1.11.0 are vulnerable to Command Injection via git argument injection. When calling the fetch(remote = 'origin', opts = {}) function, the remote parameter is passed to the git fetch subcommand in a way that additional flags can be set. The additional flags can be used to perf...

9.8CVSS9.2AI score0.01606EPSS