Packages
Get Gentoo!
gentoo.org sites
gentoo.org
Wiki
Bugs
Forums
Packages
Planet
Archives
Sources
Infra Status
Home
Packages
Maintainers
USE flags
Architectures
About
Gentoo Developer
William Hubbs
Packages
248
Stabilization
27
Outdated
72
Pull requests
21
Bugs
277
Security
24
Changelog
Security Bug Reports
app-containers/umoci: host file overwrite
780582 - Assigned to Gentoo Security
sys-cluster/kube-apiserver: webhook redirect vulnerability
813645 - Assigned to Gentoo Security
<app-containers/docker-cli-20.10.9: May send credentials to non-chosen registry (CVE-2021-41092)
816321 - Assigned to Gentoo Security
<mail-mta/postfix-3.6.3: queue file corruption
822753 - Assigned to Gentoo Security
<sys-cluster/kubectl-1.26.0: lacks escape/meta/control sequence filtering in terminal output
830714 - Assigned to Gentoo Security
<net-vpn/openvpn-2.5.6: potential authentication by-pass with multiple deferred authentication plug-ins
835514 - Assigned to Gentoo Security
dev-util/wasmer: 'cargo audit' reports one or more bundled CRATES as vulnerable
864079 - Assigned to Gentoo Security
<app-metrics/prometheus-2.40.4 app-metrics/prometheus-bin: basic authentication bypass
883637 - Assigned to Gentoo Security
<app-metrics/blackbox_exporter-0.24.0: basic authentication bypass
883651 - Assigned to Gentoo Security
<app-metrics/node_exporter-1.5.0: basic authentication bypass
883653 - Assigned to Gentoo Security
<app-metrics/prometheus-2.43.0: security fixes in bundled code
885109 - Assigned to Gentoo Security
app-metrics/consul_exporter: basic authentication bypass
890162 - Assigned to Gentoo Security
dev-util/gitlab-runner: user jumping vulnerability
891253 - Assigned to Gentoo Security
<dev-python/MechanicalSoup-1.3.0: Malicious web server can read arbitrary files on client using file input inside HTML form
909723 - Assigned to Gentoo Security
<net-vpn/openvpn-2.6.7: Multiple vulnerabilities
917272 - Assigned to Gentoo Security
net-vpn/openvpn: DoS via crafted reset packet
918673 - Assigned to Gentoo Security
sys-cluster/kube-apiserver: authentication bypass vulnerability
919131 - Assigned to Gentoo Security
<mail-mta/postfix-3.8.4: SMTP smuggling
920509 - Assigned to Gentoo Security
sys-cluster/nomad: multiple vulnerabilities
925029 - Assigned to Gentoo Security
dev-go/protobuf-go: infinite loop with certain forms of invalid JSON
926531 - Assigned to Gentoo Security
<net-libs/nodejs-{18.20.1,20.12.1}: multiple vulnerabilities
928532 - Assigned to Gentoo Security
<app-containers/skopeo-1.15.1: unexpected authenticated registry accesses
932453 - Assigned to Gentoo Security
net-vpn/openvpn: multiple vulnerabilities
938533 - Assigned to Gentoo Security
<dev-libs/dotconf-1.4.1: Multiple vulnerabilities
939831 - Assigned to Gentoo Security
Contact Information
Please file new vulnerability reports on
Gentoo Bugzilla
and assign them to the Gentoo Security product and Vulnerabilities component.
Packages