CVE-2017-1002153

Koji 1.13.0 does not properly validate SCM paths, allowing an attacker to work around blacklisted paths for build submission. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt