| Release | Version |
|---|---|
| buster | 17.7.0-1 |
| sid | 17.25.6-1 |
| Bug | buster | sid | Description |
|---|---|---|---|
| CVE-2019-18900 | vulnerable (no DSA) | fixed | : Incorrect Default Permissions vulnerability in libzypp of SUSE CaaS ... |
| Bug | Description |
|---|---|
| CVE-2018-7685 | The decoupled download and installation steps in libzypp before 17.5.0 ... |
| CVE-2017-9269 | In libzypp before August 2018 GPG keys attached to YUM repositories we ... |
| CVE-2017-7436 | In libzypp before 20170803 it was possible to retrieve unsigned packag ... |
| CVE-2017-7435 | In libzypp before 20170803 it was possible to add unsigned YUM reposit ... |
| CVE-2013-3704 | The RPM GPG key import and handling feature in libzypp 12.15.0 and ear ... |
| DSA / DLA | Description |
|---|---|
| DLA-2132-1 | libzypp - security update |