Описание
ELSA-2020-4508: libsolv security, bug fix, and enhancement update (MODERATE)
[0.7.11-1]
- Update to 0.7.11
- selected bug fixes:
- support arch<->noarch package changes when creating patch conflicts from the updateinfo data
- also support other rpm database types
- fixed solv_zchunk decoding error if large chunks are used
- treat retracted pathes as irrelevant
- made add_update_target work with multiversion installs
- new features
- support for SOLVER_BLACKLIST jobs that block the installation of matched packages unless they are directly selected by an SOLVER_INSTALL job
- libsolv now also parses the patch status in the updateinfo parser
- new solvable_matchessolvable() function
- support conda constrains dependencies
- new rpm_stat_database() function
- new rpm_hash_database_state() function
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
libsolv
0.7.11-1.el8
python3-solv
0.7.11-1.el8
Oracle Linux x86_64
libsolv
0.7.11-1.el8
python3-solv
0.7.11-1.el8
Связанные CVE
Связанные уязвимости
repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema.
repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema.
repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema.
repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-ba ...
repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema.