generated from redhat-developer/new-project-template
-
Notifications
You must be signed in to change notification settings - Fork 45
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Update CVE list and content for release-1.5 (#910)
Signed-off-by: Fabrice Flore-Thébault <ffloreth@redhat.com>
- Loading branch information
Showing
9 changed files
with
36 additions
and
145 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
6 changes: 0 additions & 6 deletions
6
modules/release-notes/list-fixed-security-issues-in-product-1.3.0.txt
This file was deleted.
Oops, something went wrong.
8 changes: 8 additions & 0 deletions
8
modules/release-notes/list-fixed-security-issues-in-product-1.5.0.txt
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,8 @@ | ||
| CVE-2024-56326 | ||
| CVE-2024-56201 | ||
| CVE-2024-45338 | ||
| CVE-2024-52798 | ||
| CVE-2024-56334 | ||
| CVE-2024-55565 | ||
| CVE-2025-22150 | ||
| CVE-2023-26136 |
26 changes: 0 additions & 26 deletions
26
modules/release-notes/list-fixed-security-issues-in-rpm-1.3.0.txt
This file was deleted.
Oops, something went wrong.
Empty file.
19 changes: 0 additions & 19 deletions
19
modules/release-notes/snip-fixed-security-issues-in-product-1.3.0.adoc
This file was deleted.
Oops, something went wrong.
25 changes: 25 additions & 0 deletions
25
modules/release-notes/snip-fixed-security-issues-in-product-1.5.0.adoc
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,25 @@ | ||
| = {product} dependency updates | ||
| link:https://access.redhat.com/security/cve/CVE-2023-26136[CVE-2023-26136]:: | ||
| A flaw was found in the tough-cookie package which allows Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized. | ||
|
|
||
| link:https://access.redhat.com/security/cve/CVE-2024-45338[CVE-2024-45338]:: | ||
| A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service. | ||
|
|
||
| link:https://access.redhat.com/security/cve/CVE-2024-52798[CVE-2024-52798]:: | ||
| A flaw was found in path-to-regexp. A path-to-regexp turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. | ||
|
|
||
| link:https://access.redhat.com/security/cve/CVE-2024-55565[CVE-2024-55565]:: | ||
| nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version. | ||
|
|
||
| link:https://access.redhat.com/security/cve/CVE-2024-56201[CVE-2024-56201]:: | ||
| A flaw was found in the Jinja2 package. A bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of Jinja's sandbox being used. An attacker needs to be able to control both the filename and the contents of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates where the template author can also choose the template filename. | ||
|
|
||
| link:https://access.redhat.com/security/cve/CVE-2024-56326[CVE-2024-56326]:: | ||
| A flaw was found in the Jinja package. In affected versions of Jinja, an oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates. Jinja's sandbox does catch calls to str.format and ensures they don't escape the sandbox. However, storing a reference to a malicious string's format method is possible, then passing that to a filter that calls it. No such filters are built into Jinja but could be present through custom filters in an application. After the fix, such indirect calls are also handled by the sandbox. | ||
|
|
||
| link:https://access.redhat.com/security/cve/CVE-2024-56334[CVE-2024-56334]:: | ||
| A flaw was found in the systeminformation library for Node.js. In Windows systems, the SSID parameter of the `getWindowsIEEE8021x` function is not sanitized before it is passed to cmd.exe. This may allow a remote attacker to execute arbitrary commands on the target system. | ||
|
|
||
| link:https://access.redhat.com/security/cve/CVE-2025-22150[CVE-2025-22150]:: | ||
| A flaw was found in the undici package for Node.js. Undici uses `Math.random()` to choose the boundary for a multipart/form-data request. It is known that the output of `Math.random()` can be predicted if several of its generated values are known. If an app has a mechanism that sends multipart requests to an attacker-controlled website, it can leak the necessary values. Therefore, an attacker can tamper with the requests going to the backend APIs if certain conditions are met. | ||
|
|
92 changes: 0 additions & 92 deletions
92
modules/release-notes/snip-fixed-security-issues-in-rpm-1.3.0.adoc
This file was deleted.
Oops, something went wrong.
1 change: 1 addition & 0 deletions
1
modules/release-notes/snip-fixed-security-issues-in-rpm-1.5.0.adoc
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| = RHEL 9 platform RPM updates |