Описание
ELSA-2025-9635: weldr-client security update (MODERATE)
[35.12-4]
- Bump release for y-stream AND z-stream building using centpkg build --rhel-target=zstream Related: RHEL-89344
[35.12-3]
- tests: OSTree does not support the qcow2 image type
- Add test repositories for RHEL 9.6 and 9.7
- Rebuild for CVE-2025-22871 Resolves: RHEL-89344
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
weldr-client
35.12-4.el9_6
Oracle Linux x86_64
weldr-client
35.12-4.el9_6
Связанные CVE
Связанные уязвимости
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.
The net/http package improperly accepts a bare LF as a line terminator ...