SUSE-SU-2018:2814-1 -- SLES libzypp, zypperID: oval:org.secpod.oval:def:89002116 | Date: (C)2021-02-26 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for libzypp, zypper fixes the following issues: Update libzypp to version 16.17.20: Security issues fixed: - PackageProvider: Validate deta rpms before caching - PackageProvider: Validate downloaded rpm package signatures before caching Other bugs fixed: - lsof: use "-K i" if lsof supports it - Handle http error 502 Bad Gateway in curl backend - RepoManager: Explicitly request repo2solv to generate application pseudo packages. - libzypp-devel should not require cmake - HardLocksFile: Prevent against empty commit without Target having been been loaded - Avoid zombie tar processes Update to zypper to version 1.13.45: Security issues fixed: - Improve signature check callback messages - add/modify repo: Add options to tune the GPG check settings Other bugs fixed: - XML lt;install-summarygt; attribute `packages-to-change` added - man: Strengthen that `--config FILE" affects zypper.conf, not zypp.conf - Prevent nested calls to exit if aborted by a signal - ansi.h: Prevent ESC sequence strings from going out of scope - Fix: zypper bash completion expands non-existing options - Improve signature check callback messages - add/modify repo: Add options to tune the GPG check settings
Platform: |
SUSE Linux Enterprise Server 12 SP3 |