The packages below are or contain embedded packages that are vulnerable to CVE-2024-45405. Tracking as affected: - openSUSE:Factory/obs-service-cargo contains embedded package: gix-path (0.10.7) Please consider version bumping or patching the affected dependencies. The listed codestreams are affected. All other codestreams should not be affected, but feel free to double-check. This is a auto-generated message, please reach out to the reporter directly if you think this is incorrect. No bug-owner found for these packages, if the assignation is not correct feel free to re-assign.