stable

rclone-1.70.3-1.el9

FEDORA-EPEL-2025-3ad6d2fe5c created by mikelo2 11 months ago for Fedora EPEL 9

Update to 1.70.3 and adopt go-vendor-tools

This update has been submitted for testing by mikelo2.

11 months ago

This update's test gating status has been changed to 'ignored'.

11 months ago

This update has been pushed to testing.

11 months ago

mikelo2 edited this update.

11 months ago

This update has been submitted for stable by bodhi.

10 months ago

This update has been pushed to stable.

10 months ago

Please log in to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
11 months ago
in testing
11 months ago
in stable
10 months ago
modified
11 months ago
approved
10 months ago
Builds
1
rclone-1.70.3-1.el9
BZ#2067349 CVE-2022-21698 rclone: prometheus/client_golang: Denial of service using InstrumentHandlerCounter [epel-all]
0
0
BZ#2074250 CVE-2022-27191 rclone: golang: crash in a golang.org/x/crypto/ssh server [epel-all]
0
0
BZ#2141826 EPEL9 update from 1.57 to at least 1.58?
0
0
BZ#2163049 CVE-2022-41717 rclone: golang: net/http: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests [epel-all]
0
0
BZ#2178405 CVE-2022-41723 rclone: golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding [epel-all]
0
0
BZ#2229581 CVE-2023-3978 rclone: golang.org/x/net/html: Cross site scripting [epel-all]
0
0
BZ#2248231 rclone: golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-39325) [epel-all]
0
0
BZ#2255068 CVE-2023-48795 rclone: ssh: Prefix truncation attack on Binary Packet Protocol (BPP) [epel-all]
0
0
BZ#2292673 CVE-2024-24789 rclone: golang: archive/zip: Incorrect handling of certain ZIP files [epel-all]
0
0
BZ#2326579 CVE-2024-52522 rclone: improper permission and ownership handling on symlink targets with --links and --metadata [epel-all]
0
0
BZ#2331935 CVE-2024-45337 rclone: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto [epel-9]
0
0
BZ#2333216 CVE-2024-45338 rclone: Non-linear parsing of case-insensitive content in golang.org/x/net/html [epel-9]
0
0
BZ#2339076 Update to match F42 version 1.68.2
0
0
BZ#2348790 CVE-2025-22868 rclone: Unexpected memory consumption during token parsing in golang.org/x/oauth2 [epel-9]
0
0
BZ#2350764 CVE-2025-22869 rclone: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh [epel-9]
0
0
BZ#2351906 CVE-2025-22870 rclone: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net [epel-9]
0
0
BZ#2360546 CVE-2025-22872 rclone: Incorrect Neutralization of Input During Web Page Generation in x/net in golang.org/x/net [epel-9]
0
0
rclone-1.70.3-1.el9

Automated Test Results

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 26.4.0 on bodhi-web-79764b86cc-rw46h.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy