Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2021-4408

Опубликовано: 16 нояб. 2021
Источник: oracle-oval
Платформа: Oracle Linux 8

Описание

ELSA-2021-4408: libsolv security and bug fix update (LOW)

[0.7.19-1]

  • Update to 0.7.19
  • repo_add_conda: add flag to skip v2 packages
  • fix rare segfault in resolve_jobrules() that could happen if new rules are learnt
  • fix error handling in solv_xfopen_fd()
  • fix memory leaks

[0.7.17-2]

  • Fix rpm dependency

[0.7.17-1]

  • Update to 0.7.17
  • selected bug fixes:
    • repo_write: fix handling of nested flexarray
    • improve choicerule generation a bit more to cover more cases
    • harden testcase parser against repos being added too late
    • support python-3.10
    • check /var/lib/rpm macro in rpmdb code
  • new features:
    • handle default/visible/langonly attributes in comps parser
    • support multiple collections in updateinfo parser
    • add '-D' option in rpmdb2solv to set the dbpath

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

libsolv

0.7.19-1.el8

libsolv-devel

0.7.19-1.el8

libsolv-tools

0.7.19-1.el8

python3-solv

0.7.19-1.el8

Oracle Linux x86_64

libsolv

0.7.19-1.el8

libsolv-devel

0.7.19-1.el8

libsolv-tools

0.7.19-1.el8

python3-solv

0.7.19-1.el8

Связанные CVE

CVE-2021-3200

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2021-3200

CVSS3: 3.3
ubuntu
больше 4 лет назад

Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool, FILE *fp, const char *testcase, Queue *job, char **resultp, int *resultflagsp function at src/testcase.c: line 2334, which could cause a denial of service

redhat логотип

CVE-2021-3200

CVSS3: 3.3
redhat
около 5 лет назад

Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool, FILE *fp, const char *testcase, Queue *job, char **resultp, int *resultflagsp function at src/testcase.c: line 2334, which could cause a denial of service

nvd логотип

CVE-2021-3200

CVSS3: 3.3
nvd
больше 4 лет назад

Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool, FILE *fp, const char *testcase, Queue *job, char **resultp, int *resultflagsp function at src/testcase.c: line 2334, which could cause a denial of service

msrc логотип

CVE-2021-3200

CVSS3: 3.3
msrc
больше 4 лет назад

Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool FILE *fp const char *testcase Queue *job char **resultp int *resultflagsp function at src/testcase.c: line 2334 which could cause a denial of service

debian логотип

CVE-2021-3200

CVSS3: 3.3
debian
больше 4 лет назад

Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * t ...