5.9
CVSS CVSS_V3
Status
Fixed version
0.166.1-r0Status
Impact
This vulnerability is related to the 'rsa' dependency, of which zed is already installing the most recent version (0.9.6). There is no release of 'rsa' today with a fix for this vulnerability. The RSA GitHub project repo is working on pre-releases, so a fix may be expected soon. Waiting for upstream (RSA) to cut a new release with a fix, and for zed to consume.
Status