libsolv-0.7.16-3.el8
エラータID: AXSA:2021-2517:03
The libsolv packages provide a library for resolving package dependencies using a satisfiability algorithm.
Security Fix(es):
* libsolv: heap-based buffer overflow in pool_installable() in src/repo.h (CVE-2021-33928)
* libsolv: heap-based buffer overflow in pool_disabled_solvable() in src/repo.h (CVE-2021-33929)
* libsolv: heap-based buffer overflow in pool_installable_whatprovides() in src/repo.h (CVE-2021-33930)
* libsolv: heap-based buffer overflow in prune_to_recommended() in src/policy.c (CVE-2021-33938)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2021-33928
Buffer overflow vulnerability in function pool_installable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
CVE-2021-33929
Buffer overflow vulnerability in function pool_disabled_solvable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
CVE-2021-33930
Buffer overflow vulnerability in function pool_installable_whatprovides in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
CVE-2021-33938
Buffer overflow vulnerability in function prune_to_recommended in src/policy.c in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
Update packages.
Buffer overflow vulnerability in function pool_installable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
Buffer overflow vulnerability in function pool_disabled_solvable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
Buffer overflow vulnerability in function pool_installable_whatprovides in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
Buffer overflow vulnerability in function prune_to_recommended in src/policy.c in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
N/A
SRPMS
- libsolv-0.7.16-3.el8.src.rpm
MD5: 2c8ace5ba03e0b7d3329ff4f2e62aa2b
SHA-256: 9b82e8d2dc5825b27f9362e0e98fba6707d9864cb449b1b619a13d1a67428148
Size: 738.73 kB
Asianux Server 8 for x86_64
- libsolv-0.7.16-3.el8.x86_64.rpm
MD5: 662a68528de2875136235cd9ab7249ba
SHA-256: 9969d68e916e906feb807ad116268fd852c3c215fded9dc4de56e73400e4178c
Size: 361.50 kB - libsolv-devel-0.7.16-3.el8.x86_64.rpm
MD5: e6f38eb06354a9d5be808b0830bb6f10
SHA-256: 8b59363b05bcd10cb936aaf0f7439f0f655c5a721ac3ed21731319793f37c413
Size: 116.61 kB - libsolv-tools-0.7.16-3.el8.x86_64.rpm
MD5: 614170ed38ac7ef0bb57fd6b85f00b1e
SHA-256: 9a7c319cdddcf67561cac6d9cd8dcd427d9242eb3728a0c0a1f29133de90ea7e
Size: 89.56 kB - python3-solv-0.7.16-3.el8.x86_64.rpm
MD5: fcb51a47249f20ea42ebd7f41153c18c
SHA-256: 561978e07a63374a47527514927681eadc5e195b8343175a238a2fb794216a02
Size: 131.73 kB - libsolv-0.7.16-3.el8.i686.rpm
MD5: a3209706a21b582c7b37813d231aac04
SHA-256: 1160c38c70bcc3f6aada2a11a015e38b285d8cb2548810491b3362dead92840a
Size: 378.22 kB - libsolv-devel-0.7.16-3.el8.i686.rpm
MD5: bbcbbc3517c6b6a6e7bf99df90e0a611
SHA-256: 09c8ff67a1231d30bd8716e1b655b86020935af22190428ccd3d141b798e2577
Size: 116.62 kB
日本語