SUSE-SU-2017:2264-1 -- SLES libzypp, yast2-pkg-bindingsID: oval:org.secpod.oval:def:89044505 | Date: (C)2021-06-30 (M)2022-10-10 |
Class: PATCH | Family: unix |
The Software Update Stack was updated to receive fixes and enhancements. libzypp: - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. - Fix gpg-pubkey release computation. - Update lsof blacklist. - Re-probe on refresh if the repository type changes. - Propagate proper error code to DownloadProgressReport. - Allow to trigger an appdata refresh unconditionally. - Support custom repo variables defined in /etc/zypp/vars.d. yast2-pkg-bindings: - Do not crash when the repository URL is not defined
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
Product: |
libzypp |
yast2-pkg-bindings |