SUSE-SU-2021:2180-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 28 Jun 2021, 15:40
Last modified:04 Feb 2026, 03:04

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

28 Jun 2021, 15:40
Published
Vulnerability first disclosed
04 Feb 2026, 03:04
Last Modified
Vulnerability information updated

Description

Security update for libsolv This update for libsolv fixes the following issues: Security issues fixed: - CVE-2019-20387: Fixed heap-buffer-overflow in repodata_schema2id (bsc#1161510) - CVE-2021-3200: testcase_read: error out if repos are added or the system is changed too late (bsc#1186229) Other issues fixed: - backport support for blacklisted packages to support ptf packages and retracted patches - fix ruleinfo of complex dependencies returning the wrong origin - fix SOLVER_FLAG_FOCUS_BEST updateing packages without reason - fix add_complex_recommends() selecting conflicted packages in rare cases - fix potential segfault in resolve_jobrules - fix solv_zchunk decoding error if large chunks are used

Affected Systems

  • suselibsolv&distro=HPE Helion OpenStack 8

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE Linux Enterprise Server 12 SP3-BCL

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE Linux Enterprise Server 12 SP3-LTSS

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE Linux Enterprise Server 12 SP4-LTSS

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE Linux Enterprise Server 12 SP5

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE Linux Enterprise Software Development Kit 12 SP5

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE OpenStack Cloud 8

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE OpenStack Cloud 9

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE OpenStack Cloud Crowbar 8

    < 0.6.37-2.33.1

  • suselibsolv&distro=SUSE OpenStack Cloud Crowbar 9

    < 0.6.37-2.33.1

  • suselibzypp&distro=HPE Helion OpenStack 8

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE Linux Enterprise Server 12 SP3-BCL

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE Linux Enterprise Server 12 SP3-LTSS

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE Linux Enterprise Server 12 SP4-LTSS

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE Linux Enterprise Server 12 SP5

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE Linux Enterprise Software Development Kit 12 SP5

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE OpenStack Cloud 8

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE OpenStack Cloud 9

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE OpenStack Cloud Crowbar 8

    < 16.21.4-2.51.1

  • suselibzypp&distro=SUSE OpenStack Cloud Crowbar 9

    < 16.21.4-2.51.1

References (5)