Fedora 27 FEDORA-2018-ec9bc84fda Moderate: Zypper Security Issue
fedora
September 17, 2018
Update to `libzypp-16.17.20` and `zypper-1.13.45` to resolve CVE-2018-7685.
Summary
Zypper is a command line package manager tool using libzypp,
which can be used to manage software for RPM based systems.
Update to `libzypp-16.17.20` and `zypper-1.13.45` to resolve CVE-2018-7685.
* Wed Sep 5 2018 Neal Gompa
- Update to 1.13.45
* Wed Mar 7 2018 Neal Gompa
- Update to 1.13.41
- Drop recommends for cron
[ 1 ] Bug #1624512 - CVE-2018-7685 libzypp: decoupled download and installation allows corrupted RPM install
https://bugzilla.redhat.com/show_bug.cgi?id=1624512
su -c 'dnf upgrade --advisory FEDORA-2018-ec9bc84fda' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Topics Covered
Change Log
References
Update Instructions
PREVIOUS
NEXT
Product: Fedora 27
Version: 1.13.45
Release: 1.fc27
URL:
Summary: Command line package manager using libzypp
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!