Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: 2021:2040-2 Critical Upgrade For Zypper, Libzypp, And Libsolv

suse
Calendar Grey July 31, 2019
Dist Suse Esm H88
Patch for zypper, libzypp, and libsolv addresses multiple concerns with various enhancements. Keep your system current!
An update that solves three vulnerabilities and has 41 fixes is now available

Summary

This update for libzypp and libsolv fixes the following issues: Security issues fixed: - CVE-2018-20532: Fixed NULL pointer dereference at ext/testcase.c (function testcase_read) (bsc#1120629). - CVE-2018-20533: Fixed NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a (bsc#1120630). - CVE-2018-20534: Fixed illegal address access at src/pool.h (function pool_whatprovides) in libsolv.a (bsc#1120631). Fixed bugs and enhancements: - make cleandeps jobs on patterns work (bnc#1137977) - Fixed an issue where libsolv failed to build against swig 4.0 by updating the version to 0.7.5 (bsc#1135749). - Virtualization host upgrade from SLES-15 to SLES-15-SP1 finished with wrong product name shown up (bsc#1131823).

Topics%20covered

Topics Covered

security advisory security issue moderate severity SUSE Linux zypper libzypp libsolv

References

#1047962 #1049826 #1053177 #1065022 #1099019

#1102261 #1110542 #1111319 #1112911 #1113296

#1114908 #1115341 #1116840 #1118758 #1119373

#1119820 #1119873 #1120263 #1120463 #1120629

#1120630 #1120631 #1121611 #1122062 #1122471

#1123137 #1123681 #1123843 #1123865 #1123967

#1124897 #1125415 #1127026 #1127155 #1127220

#1130161 #1131823 #1135749 #1137977 #663358

#764147 #965786 #978193 #993025

Cross- CVE-2018-20532 CVE-2018-20533 CVE-2018-20534

Affected Products:

SUSE Linux Enterprise Workstation Extension 15

SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1

SUSE Linux Enterprise Module for Open Buildservice Development Tools 15

SUSE Linux Enterprise Module for Development Tools 15

SU...

Read the Full Advisory

Announcement ID: SUSE-SU-2019:2030-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory security issue moderate severity SUSE Linux zypper libzypp libsolv

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here