Vulnerabilities > Gentoo > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-15 | CVE-2020-36770 | Unspecified vulnerability in Gentoo Ebuild for Slurm 22.05.3 pkg_postinst in the Gentoo ebuild for Slurm through 22.05.3 unnecessarily calls chown to assign root's ownership on files in the live root filesystem. | 9.8 |
2024-01-12 | CVE-2016-20021 | Improper Verification of Cryptographic Signature vulnerability in Gentoo Portage In Gentoo Portage before 3.0.47, there is missing PGP validation of executed code: the standalone emerge-webrsync downloads a .gpgsig file but does not perform signature verification. | 9.8 |
2023-03-20 | CVE-2023-28424 | SQL Injection vulnerability in Gentoo Soko Soko if the code that powers packages.gentoo.org. | 9.8 |
2023-02-25 | CVE-2023-26033 | SQL Injection vulnerability in Gentoo Soko Gentoo soko is the code that powers packages.gentoo.org. | 9.1 |