VulnerableCode Package Details - pkg:rpm/redhat/ose-baremetal-runtimecfg-container@4.13.0-202305211041.p0.gf0c1297.assembly?arch=stream

Search for packages

Package details: pkg:rpm/redhat/ose-baremetal-runtimecfg-container@4.13.0-202305211041.p0.gf0c1297.assembly?arch=stream

Essentials
History (0)

purl	pkg:rpm/redhat/ose-baremetal-runtimecfg-container@4.13.0-202305211041.p0.gf0c1297.assembly?arch=stream

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-s48v-93da-aaaf Aliases: CVE-2022-41723 GHSA-vvpx-j8f3-3w6h	A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.	There are no reported fixed by versions.
VCID-zwfx-pswj-aaac Aliases: CVE-2022-41722	A path traversal vulnerability exists in filepath.Clean on Windows. On Windows, the filepath.Clean function could transform an invalid path such as "a/../c:/b" into the valid path "c:\b". This transformation of a relative (if invalid) path into an absolute path could enable a directory traversal attack. After fix, the filepath.Clean function transforms this path into the relative (but still invalid) path ".\c:\b".	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version