https://bugzilla.redhat.com/show_bug.cgi?id=2305915
Bug ID: 2305915
Summary: CVE-2024-23185 perl-Email-Address-XS: very large
headers can cause resource exhaustion when parsing
message [epel-all]
Product: Fedora EPEL
Version: epel8
Status: NEW
Whiteboard: {"flaws": ["3477a34a-f4c8-488a-a933-f8ea1c702a4e"]}
Component: perl-Email-Address-XS
Keywords: Security, SecurityTracking
Severity: high
Priority: high
Assignee: jplesnik(a)redhat.com
Reporter: mbenatto(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: jplesnik(a)redhat.com,
perl-devel(a)lists.fedoraproject.org
Blocks: 2305910 (CVE-2024-23185)
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
https://bugzilla.redhat.com/show_bug.cgi?id=2305910
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=2305910
[Bug 2305910] CVE-2024-23185 dovecot: very large headers can cause resource
exhaustion when parsing message
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2305915
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2332241
Bug ID: 2332241
Summary: CVE-2024-55918 perl-Graphics-ColorNames: HTML
injection [fedora-41]
Product: Fedora
Version: 41
Status: NEW
Whiteboard: {"flaws": ["39c04a19-4932-4492-ba5e-9a8f0ae95fb4"]}
Component: perl-Graphics-ColorNames
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: jplesnik(a)redhat.com
Reporter: ahanwate(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: jplesnik(a)redhat.com,
perl-devel(a)lists.fedoraproject.org, steve(a)silug.org
Blocks: 2332239
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
https://bugzilla.redhat.com/show_bug.cgi?id=2332239
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2332241
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2335501
Bug ID: 2335501
Summary: CVE-2025-22376 perl-Net-OAuth: Default nonce for
Net::OAuth package for perl is not cryptographically
strong [epel-all]
Product: Fedora EPEL
Version: epel9
Status: NEW
Whiteboard: {"flaws": ["0d0def6b-d3d7-489c-824e-dafb571e1f39"]}
Component: perl-Net-OAuth
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: sander(a)hoentjen.eu
Reporter: mbenatto(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: emmanuel(a)seyman.fr, lkundrak(a)v3.sk,
perl-devel(a)lists.fedoraproject.org,
sander(a)hoentjen.eu, xavier(a)bachelot.org
Blocks: 2335488
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
https://bugzilla.redhat.com/show_bug.cgi?id=2335488
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2335501
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2348397
Bug ID: 2348397
Summary: Please branch and build perl-File-Touch for EPEL 9
and 10
Product: Fedora EPEL
Version: epel9
Status: NEW
Component: perl-File-Touch
Assignee: ppisar(a)redhat.com
Reporter: sergio(a)serjux.com
QA Contact: extras-qa(a)fedoraproject.org
CC: andrea.veri(a)gmail.com,
perl-devel(a)lists.fedoraproject.org, ppisar(a)redhat.com
Target Milestone: ---
Classification: Fedora
Description of problem:
Version-Release number of selected component (if applicable):
How reproducible:
Steps to Reproduce:
1.
2.
3.
Actual results:
Expected results:
Additional info:
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2348397
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…