Search for packages
| purl | pkg:rpm/redhat/jbcs-httpd24-openssl@1:1.1.1k-13?arch=el8jbcs |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-95ub-7a6n-afdg
Aliases: CVE-2022-2068 |
openssl: the c_rehash script allows command injection | There are no reported fixed by versions. |
|
VCID-q2ae-5r8q-3fbv
Aliases: CVE-2022-1292 |
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') The `c_rehash` script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the `c_rehash` script is considered obsolete and should be replaced by the OpenSSL `rehash` command line tool. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T13:58:41.549829+00:00 | RedHat Importer | Affected by | VCID-q2ae-5r8q-3fbv | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1292.json | 38.0.0 |
| 2026-04-01T13:58:08.751065+00:00 | RedHat Importer | Affected by | VCID-95ub-7a6n-afdg | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2068.json | 38.0.0 |