vulnerability
CentOS Linux: CVE-2018-20534: Low: libsolv security and bug fix update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Dec 28, 2018 | Aug 28, 2019 | Nov 8, 2023 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Dec 28, 2018
Added
Aug 28, 2019
Modified
Nov 8, 2023
Description
There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. NOTE: third parties dispute this issue stating that the issue affects the test suite and not the underlying library. It cannot be exploited in any real-world application
Solution(s)
centos-upgrade-createrepo_ccentos-upgrade-createrepo_c-debuginfocentos-upgrade-createrepo_c-debugsourcecentos-upgrade-createrepo_c-develcentos-upgrade-createrepo_c-libscentos-upgrade-createrepo_c-libs-debuginfocentos-upgrade-dnfcentos-upgrade-dnf-automaticcentos-upgrade-dnf-datacentos-upgrade-dnf-plugins-corecentos-upgrade-libcompscentos-upgrade-libcomps-debuginfocentos-upgrade-libcomps-debugsourcecentos-upgrade-libcomps-develcentos-upgrade-libdnfcentos-upgrade-libdnf-debuginfocentos-upgrade-libdnf-debugsourcecentos-upgrade-librepocentos-upgrade-librepo-debuginfocentos-upgrade-librepo-debugsourcecentos-upgrade-librhsmcentos-upgrade-librhsm-debuginfocentos-upgrade-librhsm-debugsourcecentos-upgrade-libsolvcentos-upgrade-libsolv-debuginfocentos-upgrade-libsolv-debugsourcecentos-upgrade-libsolv-democentos-upgrade-libsolv-demo-debuginfocentos-upgrade-libsolv-develcentos-upgrade-libsolv-toolscentos-upgrade-libsolv-tools-debuginfocentos-upgrade-microdnfcentos-upgrade-microdnf-debuginfocentos-upgrade-microdnf-debugsourcecentos-upgrade-perl-solv-debuginfocentos-upgrade-python2-solvcentos-upgrade-python3-createrepo_ccentos-upgrade-python3-createrepo_c-debuginfocentos-upgrade-python3-dnfcentos-upgrade-python3-dnf-plugin-versionlockcentos-upgrade-python3-dnf-plugins-corecentos-upgrade-python3-hawkeycentos-upgrade-python3-hawkey-debuginfocentos-upgrade-python3-libcompscentos-upgrade-python3-libcomps-debuginfocentos-upgrade-python3-libdnfcentos-upgrade-python3-libdnf-debuginfocentos-upgrade-python3-librepocentos-upgrade-python3-librepo-debuginfocentos-upgrade-python3-solv-debuginfocentos-upgrade-ruby-solv-debuginfocentos-upgrade-yumcentos-upgrade-yum-utils
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.