eap7-yasson vulnerabilities

Known vulnerabilities in the eap7-yasson package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H Resource Exhaustion	<0:1.0.11-4.redhat_00002.1.el7eap
H Improper Initialization	<0:1.0.11-4.redhat_00002.1.el7eap
H Resource Exhaustion	<0:1.0.11-4.redhat_00002.1.el7eap
H Deserialization of Untrusted Data	<0:1.0.11-4.redhat_00002.1.el7eap
H Directory Traversal	<0:1.0.11-4.redhat_00002.1.el7eap
H Files or Directories Accessible to External Parties	<0:1.0.11-4.redhat_00002.1.el7eap
H Improper Validation of Syntactic Correctness of Input	<0:1.0.11-4.redhat_00002.1.el7eap
H Allocation of Resources Without Limits or Throttling	<0:1.0.11-4.redhat_00002.1.el7eap
H Improperly Implemented Security Check for Standard	<0:1.0.2-1.redhat_00001.1.el7eap
H Race Condition	<0:1.0.2-1.redhat_00001.1.el7eap
H Information Exposure	<0:1.0.2-1.redhat_00001.1.el7eap
H Authentication Bypass	<0:1.0.5-1.redhat_00001.1.el7eap
H Improper Access Control	<0:1.0.5-1.redhat_00001.1.el7eap
M Information Exposure	<0:1.0.1-3.redhat_1.1.el7eap
M HTTP Request Smuggling	<0:1.0.9-1.redhat_00001.1.el7eap
M Information Exposure	<0:1.0.9-1.redhat_00001.1.el7eap
H Cross-site Request Forgery (CSRF)	<0:1.0.2-1.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:1.0.2-1.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:1.0.2-1.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:1.0.2-1.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:1.0.2-1.redhat_00001.1.el7eap
H Resource Exhaustion	<0:1.0.5-1.redhat_00001.1.el7eap
H Resource Exhaustion	<0:1.0.5-1.redhat_00001.1.el7eap
H Resource Exhaustion	<0:1.0.5-1.redhat_00001.1.el7eap
H Resource Exhaustion	<0:1.0.5-1.redhat_00001.1.el7eap
M Arbitrary Command Injection	<0:1.0.9-1.redhat_00001.1.el7eap

Vulnerability

Vulnerable Version

Resource Exhaustion