Fri Jul 26 2024 19:47:00 UTC
 Talent hits a target no one else can hit. Genius hits a target no one else can see.
Hide Search Description
13 bugs found.
ID Product Comp Assignee Status Resolution Summary Changed
1122675 openSUSE Build Service osc marco.strigl RESO FIXE VUL-0: CVE-2019-3681: osc: stores downloaded (supposed) RPM in network-controlled filesystem paths 2023-03-15
1122683 openSUSE Build Service osc daniel.mach RESO UPST AUDIT-FIND: osc: deprecate insecure APIs 2024-06-28
1143652 SUSE Security Incidents Incidents adrian.schroeter NEW --- AUDIT-FIND: obs-service-set_version: path traversal 2024-05-17
1143655 SUSE Security Incidents Audits dmueller NEW --- AUDIT-FIND: obs-service-set_version: checksum verification disabled 2022-02-24
1143658 SUSE Security Incidents Audits adrian.schroeter NEW --- AUDIT-FIND: obs-service-tar_scm: XML injection 2022-02-24
1143659 SUSE Security Incidents Audits adrian.schroeter RESO FIXE AUDIT-FIND: obs-service-extract_file: calls cpio instead of bsdtar 2020-11-25
1143661 SUSE Security Incidents Audits adrian.schroeter NEW --- AUDIT-FIND: obs-service-bundle_gems: calls cpio instead of bsdtar 2020-11-25
1143662 SUSE Security Incidents Audits adrian.schroeter RESO INVA AUDIT-FIND: obs-service-python_sdist: runs untrusted setup.py 2022-02-24
1143663 SUSE Security Incidents Audits adrian.schroeter NEW --- AUDIT-FIND: obs-service-refresh-patches: calls into osc and quilt 2023-10-12
1143664 SUSE Security Incidents Audits adrian.schroeter NEW --- AUDIT-FIND: obs-service-git_tarballs: path traversal 2020-11-27
1143667 SUSE Security Incidents Audits adrian.schroeter RESO UPST AUDIT-FIND: obs-service-github_tarballs: plain-text password storage 2022-02-24
1143668 SUSE Security Incidents Audits adrian.schroeter NEW --- AUDIT-FIND: obs-service-renderspec: path traversal 2020-11-24
1143670 SUSE Security Incidents Audits adrian.schroeter NEW --- AUDIT-FIND: obs-service-download_url: certificate validation force-disabled 2022-02-24
13 bugs found.
CSV Feed iCal
as