Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| dnf5 | unfixed | package |
Примечания
https://bugzilla.redhat.com/show_bug.cgi?id=2445770
Связанные уязвимости
CVSS3: 5.5
redhat
около 1 месяца назад
A flaw was found in dnf5. A local, unprivileged attacker can exploit a path traversal vulnerability in the D-Bus locale configuration. By providing a specially crafted string to the locale key during session opening, the attacker can force the dnf5daemon-server to terminate, leading to an application-level Denial of Service (DoS) with a core dump.