1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2022-a49babed75

[FEDORA-2022-a49babed75] Fedora 34: clash

Severity High
Affected Packages 1
CVEs 2
Info Packages References Vulnerabilities

Security fix for CVE-2022-28327 CVE-2022-24675

Package Affected Version
pkg:rpm/fedora/clash?distro=fedora-34 < 1.6.5.2.fc34
ID
FEDORA-2022-a49babed75
Severity
high
Severity from
CVE-2022-28327
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2022-a49babed75
Published
2022-05-27T01:03:00
(2 years ago)
Modified
2022-05-27T01:03:00
(2 years ago)
Rights
Copyright 2022 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 2084708 Bug #2084708 - CVE-2022-24675 clash: golang: encoding/pem: fix stack overflow in Decode [fedora-34] https://bugzilla.redhat.com/show_bug.cgi?id=2084708
Bugzilla 2084888 Bug #2084888 - CVE-2022-28327 clash: golang: crypto/elliptic: panic caused by oversized scalar [fedora-34] https://bugzilla.redhat.com/show_bug.cgi?id=2084888
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/clash?distro=fedora-34 fedora clash < 1.6.5.2.fc34 fedora-34
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date