ELBA-2025-31409

ELBA-2025-31409 - vaultwarden Bug Fix update

Type:BUG
Impact:NA
Release Date:2025-02-16

Description


[1.33.2-1]
- update to 1.33.2 rhbz#2343535
Fix CVE-2025-0977 ssl::select_next_proto use after free rhbz#2344558

[1.33.0-1]
- update to 1.33.0 rhbz#2342073
Fix GHSA-f7r5-w49x-gxm3 Getting access to the Admin Panel via CSRF
Fix CVE-2025-24364 RCE in the admin panel
Fix CVE-2025-24365 escalation of privilege via variable confusion in OrgHeaders trait

[1.32.7-4]
- Set VW_VERSION env var during build and install rhbz#2338534

[1.32.7-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild

[1.32.7-2]
- fix build on el9 with rust 1.79

[1.32.7-1]
- update to 1.32.7 rhbz#2322181
- Fix CVE-2024-56335

[1.32.2-1]
- update to 1.32.2 rhbz#2316657

[1.32.0-1]
- update to 1.32.0 rhbz#2304045
Resolves CVE-2024-39924
Resolves CVE-2024-39925
Resolves CVE-2024-39926

[1.31.0-2]
- Exclude s390x and ppc64le

[1.31.0-1]
- update to 1.31.0 rhbz#2297149

[1.30.5-1]
- Initial package build rhbz#2282807




Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) vaultwarden-1.33.2-1.el9.src.rpmaf40a8a425538c4c7342535a52aae9c8ad341b9fea8aa24637111051dc031b2c-ol9_aarch64_developer_EPEL
vaultwarden-1.33.2-1.el9.aarch64.rpm499fa520c6599f69846ffdbb69b731580c6c3e2b8367db12edfd068e2bc63918-ol9_aarch64_developer_EPEL
Oracle Linux 9 (x86_64) vaultwarden-1.33.2-1.el9.src.rpmaf40a8a425538c4c7342535a52aae9c8ad341b9fea8aa24637111051dc031b2c-ol9_x86_64_developer_EPEL
vaultwarden-1.33.2-1.el9.x86_64.rpmfb4e22d7e5c40050dd2d9a2c357490a655e9659b2860d30ec16f0c7f46c141fa-ol9_x86_64_developer_EPEL



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete