Search CVE reports
1 – 2 of 2 results
Needs evaluation
kraken <= 0.1.4 has an arbitrary file read vulnerability via the component testfs.
1 affected package
kraken
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| kraken | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Fixed
There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `|`.
1 affected package
rake
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| rake | — | — | — | Fixed |