⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Drafts

Create draft to convert the suggestion into a draft security issue that can be edited before publishing.

Dismiss to remove a suggestion from the queue.

CVE-2025-30673
6.5 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): NONE
updated 3 weeks, 1 day ago by @LeSuisse Activity log
  • Created automatic suggestion 3 weeks, 6 days ago
  • @LeSuisse accepted as draft 3 weeks, 1 day ago
Sub::HandlesVia for Perl allows untrusted code to be included from the current working directory

Sub::HandlesVia for Perl before 0.050002 allows untrusted code from the current working directory ('.') to be loaded similar to CVE-2016-1238. If an attacker can place a malicious file in current working directory, it may be loaded instead of the intended file, potentially leading to arbitrary code execution. Sub::HandlesVia uses Mite to produce the affected code section due to CVE-2025-30672

Sub-HandlesVia
<0.050002

pkgs.perl536Packages.SubHandlesVia

Alternative handles_via implementation
CVE-2025-31162
6.6 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): HIGH
updated 3 weeks, 1 day ago by @LeSuisse Activity log
  • Created automatic suggestion 1 month ago
  • @LeSuisse accepted as draft 3 weeks, 1 day ago
fig2dev float point exception

Floating point exception in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via get_slope function.

fig2dev
==3.2.9a
Notify package maintainers: 1
CVE-2025-1828
updated 1 month, 2 weeks ago by @LeSuisse Activity log
  • Created automatic suggestion 1 month, 2 weeks ago
  • @LeSuisse accepted as draft 1 month, 2 weeks ago
Perl's Crypt::Random module after 1.05 and before 1.56 may use rand() function for cryptographic functions

Crypt::Random Perl package 1.05 through 1.55 may use rand() function, which is not cryptographically strong, for cryptographic functions. Crypt::Random::rand 1.05 through 1.55 uses the rand() function. If the Provider is not specified and /dev/urandom or an Entropy Gathering Daemon (egd) service is not available Crypt::Random will default to use the insecure Crypt::Random::rand provider. In particular, Windows versions of perl will encounter this issue by default.

Crypt-Random
<1.56

pkgs.perl536Packages.CryptRandom

Interface to /dev/random and /dev/urandom

pkgs.perl538Packages.CryptRandom

Interface to /dev/random and /dev/urandom

pkgs.perl540Packages.CryptRandom

Interface to /dev/random and /dev/urandom

pkgs.perl536Packages.CryptRandomSeed

Provide strong randomness for seeding

pkgs.perl538Packages.CryptRandomSeed

Provide strong randomness for seeding

pkgs.perl540Packages.CryptRandomSeed

Provide strong randomness for seeding

pkgs.perl536Packages.CryptRandomSource

Get weak or strong random data from pluggable sources

pkgs.perl536Packages.CryptRandomTESHA2

Random numbers using timer/schedule entropy, aka userspace voodoo entropy

pkgs.perl538Packages.CryptRandomSource

Get weak or strong random data from pluggable sources

pkgs.perl540Packages.CryptRandomSource

Get weak or strong random data from pluggable sources
Notify package maintainers: 1
CVE-2025-26466
5.9 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): HIGH
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
updated 1 month, 3 weeks ago by @fricklerhandwerk Activity log
  • Created automatic suggestion 1 month, 4 weeks ago
  • @fricklerhandwerk removed
    7 packages
    • pkgs.perl540Packages.NetOpenSSH 0.84
    • pkgs.perl538Packages.NetOpenSSH 0.84
    • pkgs.perl536Packages.NetOpenSSH 0.84
    • pkgs.lxqt.lxqt-openssh-askpass 2.0.1
    • pkgs.lxqt.lxqt-openssh-askpass 2.1.0
    • pkgs.openssh_hpnWithKerberos 9.9p1
    • pkgs.opensshWithKerberos 9.9p1
    1 month, 3 weeks ago
  • @fricklerhandwerk accepted as draft 1 month, 3 weeks ago
Openssh: denial-of-service in openssh

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to an uncontrolled increase in memory consumption on the server side. Consequently, the server may become unavailable, resulting in a denial of service attack.

rhcos
OpenSSH
=<9.9p1
openssh
Notify package maintainers: 5
CVE-2025-0750
6.6 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): HIGH
updated 2 months, 3 weeks ago by @fricklerhandwerk Activity log
  • Created automatic suggestion 3 months ago
  • @fricklerhandwerk accepted as draft 2 months, 3 weeks ago
Cri-o: cri-o path traversal in log handling functions allows arbitrary unmounting

A vulnerability was found in CRI-O. A path traversal issue in the log management functions (UnMountPodLogs and LinkContainerLogs) may allow an attacker with permissions to create and delete Pods to unmount arbitrary host paths, leading to node-level denial of service by unmounting critical system directories.

cri-o
rhcos
Notify package maintainers: 2
CVE-2024-11218
8.6 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
updated 3 months ago by @fricklerhandwerk Activity log
  • Created automatic suggestion 3 months ago
  • @fricklerhandwerk removed
    15 packages
    • pkgs.buildah-unwrapped 1.35.4
    • pkgs.buildah-unwrapped 1.38.0
    • pkgs.nomad-driver-podman 0.5.2
    • pkgs.nomad-driver-podman 0.6.1
    • pkgs.nvidia-podman
    • pkgs.podman-compose 1.1.0
    • pkgs.podman-compose 1.2.0
    • pkgs.podman-desktop 0.12.0
    • pkgs.podman-desktop 1.13.2
    • pkgs.python311Packages.podman 5.0.0
    • pkgs.python311Packages.podman 5.2.0
    • pkgs.python311Packages.podman 5.3.0
    • pkgs.python312Packages.podman 5.0.0
    • pkgs.python312Packages.podman 5.2.0
    • pkgs.python312Packages.podman 5.3.0
    3 months ago
  • @fricklerhandwerk accepted as draft 3 months ago
Podman: buildah: container breakout by using --jobs=2 and a race condition when building a malicious containerfile

A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.

rhcos
podman
buildah
container-tools:rhel8/podman
container-tools:rhel8/buildah
Notify package maintainers: 3
CVE-2024-0406
6.1 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): HIGH
  • Availability impact (A): NONE
updated 3 months ago by @LeSuisse Activity log
  • Created automatic suggestion 3 months, 2 weeks ago
  • @LeSuisse accepted as draft 3 months ago
Mholt/archiver: path traversal vulnerability

A flaw was discovered in the mholt/archiver package. This flaw allows an attacker to create a specially crafted tar file, which, when unpacked, may allow access to restricted files or directories. This issue can allow the creation or overwriting of files with the user's or application's privileges using the library.

archiver
*
*
openshift4/oc-mirror-plugin-rhel8
advanced-cluster-security/rhacs-main-rhel8
advanced-cluster-security/rhacs-roxctl-rhel8
advanced-cluster-security/rhacs-scanner-rhel8

pkgs.python311Packages.nskeyedunarchiver

Unserializes plist data into a usable Python dict

pkgs.python312Packages.nskeyedunarchiver

Unserializes plist data into a usable Python dict
Notify package maintainers: 7
CVE-2024-12084
9.8 CRITICAL
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
updated 3 months ago by @LeSuisse Activity log
  • Created automatic suggestion 3 months, 1 week ago
  • @LeSuisse removed
    16 packages
    • pkgs.emacsPackages.dired-rsync-transient 20230714.1459
    • pkgs.python312Packages.vdirsyncer 0.19.2
    • pkgs.python312Packages.vdirsyncer 0.19.3
    • pkgs.python311Packages.vdirsyncer 0.19.2
    • pkgs.python311Packages.vdirsyncer 0.19.3
    • pkgs.python312Packages.sysrsync 1.1.1
    • pkgs.python311Packages.sysrsync 1.1.1
    • pkgs.diskrsync 1.3.0
    • pkgs.emacsPackages.dired-rsync 20230822.1350
    • pkgs.emacsPackages.rsync-mode 20210911.0
    • pkgs.rrsync 3.3.0
    • pkgs.librsync 2.3.4
    • pkgs.grsync 1.3.1
    • pkgs.openrsync 2022-05-08
    • pkgs.vdirsyncer 0.19.2
    • pkgs.vdirsyncer 0.19.3
    3 months ago
  • @LeSuisse accepted as draft 3 months ago
Rsync: heap buffer overflow in rsync due to improper checksum length handling

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.

rhcos
rsync
==3.2.7
==3.3.0
Notify package maintainers: 3
CVE-2025-23884
7.1 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
updated 3 months, 1 week ago by @Erethon Activity log
  • Created automatic suggestion 3 months, 1 week ago
  • @Erethon dismissed 3 months, 1 week ago
  • @Erethon accepted as draft 3 months, 1 week ago
WordPress Annie plugin <= 2.1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Chris Roberts Annie allows Cross Site Request Forgery.This issue affects Annie: from n/a through 2.1.1.

annie
=<2.1.1
Notify package maintainers: 1
CVE-2025-23760
7.1 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): LOW
updated 3 months, 1 week ago by @Erethon Activity log
  • Created automatic suggestion 3 months, 1 week ago
  • @Erethon accepted as draft 3 months, 1 week ago
  • @Erethon dismissed 3 months, 1 week ago
  • @Erethon accepted as draft 3 months, 1 week ago
WordPress Chatter plugin <= 1.0.1 - CSRF to Stored XSS vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alex Volkov Chatter allows Stored XSS. This issue affects Chatter: from n/a through 1.0.1.

chatter
=<1.0.1
Notify package maintainers: 3