1876582 – Multiple vulnerabilities

Bug 1876582 - Multiple vulnerabilities

Summary: Multiple vulnerabilities

Keywords:
Status:	CLOSED EOL
Alias:	None
Product:	Fedora EPEL
Classification:	Fedora
Component:	yaws
Sub Component:
Version:	epel7
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	high
Target Milestone:	---
Assignee:	Orphan Owner
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2020-09-07 15:44 UTC by Alexey Pronin
Modified:	2024-07-09 03:18 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2024-07-09 03:18:04 UTC
Type:	Bug
Embargoed:

Attachments	(Terms of Use)

Description Alexey Pronin 2020-09-07 15:44:44 UTC

Description of problem:
CVE-2020-24379 - XXE injecton;
CVE-2020-24916 - OS command injection.

Version-Release number of selected component (if applicable):
up to 2.0.8

Comment 1 Troy Dawson 2024-07-09 03:18:04 UTC

EPEL 7 entered end-of-life (EOL) status on 2024-06-30.\n\nEPEL 7 is no longer maintained, which means that it\nwill not receive any further security or bug fix updates.\n As a result we are closing this bug.

Note You need to log in before you can comment on or make changes to this bug.