Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Open_build_service
(Opensuse)| Repositories |
• https://github.com/openSUSE/open-build-service
• https://github.com/openSUSE/obs-service-set_version |
| #Vulnerabilities | 22 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-02-11 | CVE-2020-8031 | A Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Open Build Service allows remote attackers to store JS code in markdown that is not properly escaped, impacting confidentiality and integrity. This issue affects: Open Build Service versions prior to 2.10.8. | Open_build_service | 5.4 | ||
| 2019-11-05 | CVE-2019-3685 | Open Build Service before version 0.165.4 diddn't validate TLS certificates for HTTPS connections with the osc client binary | Open_build_service | N/A |