Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-7436

Опубликовано: 01 мар. 2018
Источник: debian

Описание

In libzypp before 20170803 it was possible to retrieve unsigned packages without a warning to the user which could lead to man in the middle or malicious servers to inject malicious RPM packages into a users system.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libzyppfixed17.3.1-1package
libzyppignoredjessiepackage

Связанные уязвимости

ubuntu логотип

CVE-2017-7436

CVSS3: 8.1
ubuntu
почти 8 лет назад

In libzypp before 20170803 it was possible to retrieve unsigned packages without a warning to the user which could lead to man in the middle or malicious servers to inject malicious RPM packages into a users system.

nvd логотип

CVE-2017-7436

CVSS3: 8.1
nvd
почти 8 лет назад

In libzypp before 20170803 it was possible to retrieve unsigned packages without a warning to the user which could lead to man in the middle or malicious servers to inject malicious RPM packages into a users system.

suse-cvrf логотип

openSUSE-SU-2017:2370-1

suse-cvrf
больше 8 лет назад

Security update for libzypp, zypper

suse-cvrf логотип

SUSE-SU-2017:2344-1

suse-cvrf
больше 8 лет назад

Security update for libzypp, zypper

github логотип

GHSA-wf75-8v2m-5h2m

CVSS3: 8.1
github
больше 3 лет назад

In libzypp before 20170803 it was possible to retrieve unsigned packages without a warning to the user which could lead to man in the middle or malicious servers to inject malicious RPM packages into a users system.