Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-20266 (GCVE-0-2021-20266)
Vulnerability from cvelistv5 – Published: 2021-04-30 11:22 – Updated: 2024-08-03 17:37
VLAI
EPSS
Summary
A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.
Severity
4.9 (Medium)
CWE
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=1927741 | x_refsource_MISC |
| https://lists.fedoraproject.org/archives/list/pac… | x_refsource_MISC |
| https://lists.fedoraproject.org/archives/list/pac… | x_refsource_MISC |
| https://security.gentoo.org/glsa/202107-43 | vendor-advisoryx_refsource_GENTOO |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T17:37:23.124Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927741"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHRPNBCRPDJHHQE3MBPSZK4H7X2IM7AC/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/"
},
{
"name": "GLSA-202107-43",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202107-43"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "rpm",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "rpm 4.17.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in RPM\u0027s hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-125",
"description": "CWE-125",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-07-20T10:07:18.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927741"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHRPNBCRPDJHHQE3MBPSZK4H7X2IM7AC/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/"
},
{
"name": "GLSA-202107-43",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/202107-43"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2021-20266",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "rpm",
"version": {
"version_data": [
{
"version_value": "rpm 4.17.0"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in RPM\u0027s hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-125"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1927741",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927741"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHRPNBCRPDJHHQE3MBPSZK4H7X2IM7AC/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHRPNBCRPDJHHQE3MBPSZK4H7X2IM7AC/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/"
},
{
"name": "GLSA-202107-43",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202107-43"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2021-20266",
"datePublished": "2021-04-30T11:22:49.000Z",
"dateReserved": "2020-12-17T00:00:00.000Z",
"dateUpdated": "2024-08-03T17:37:23.124Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2021-20266",
"date": "2026-06-24",
"epss": "0.01706",
"percentile": "0.7432"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:rpm:rpm:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"4.16.1.3\", \"matchCriteriaId\": \"E210A7F5-C9AD-41DB-8E5A-2D48615DF02B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E460AA51-FCDA-46B9-AE97-E6676AA5E194\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A930E247-0B43-43CB-98FF-6CE7B8189835\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A flaw was found in RPM\u0027s hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.\"}, {\"lang\": \"es\", \"value\": \"Se detect\\u00f3 un fallo en RPM en la funci\\u00f3n hdrblobInit() en el archivo lib/header.c.\u0026#xa0;Este fallo permite a un atacante que puede modificar el rpmdb causar una lectura fuera de l\\u00edmites.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la disponibilidad del sistema.\"}]",
"id": "CVE-2021-20266",
"lastModified": "2024-11-21T05:46:14.593",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 4.9, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.2, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:S/C:N/I:N/A:P\", \"baseScore\": 4.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2021-04-30T12:15:07.500",
"references": "[{\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=1927741\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHRPNBCRPDJHHQE3MBPSZK4H7X2IM7AC/\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://security.gentoo.org/glsa/202107-43\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=1927741\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHRPNBCRPDJHHQE3MBPSZK4H7X2IM7AC/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.gentoo.org/glsa/202107-43\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-125\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-20266\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2021-04-30T12:15:07.500\",\"lastModified\":\"2024-11-21T05:46:14.593\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in RPM\u0027s hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.\"},{\"lang\":\"es\",\"value\":\"Se detect\u00f3 un fallo en RPM en la funci\u00f3n hdrblobInit() en el archivo lib/header.c.\u0026#xa0;Este fallo permite a un atacante que puede modificar el rpmdb causar una lectura fuera de l\u00edmites.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la disponibilidad del sistema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":4.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.2,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:N/I:N/A:P\",\"baseScore\":4.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rpm:rpm:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.16.1.3\",\"matchCriteriaId\":\"E210A7F5-C9AD-41DB-8E5A-2D48615DF02B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E460AA51-FCDA-46B9-AE97-E6676AA5E194\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1927741\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHRPNBCRPDJHHQE3MBPSZK4H7X2IM7AC/\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.gentoo.org/glsa/202107-43\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1927741\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHRPNBCRPDJHHQE3MBPSZK4H7X2IM7AC/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202107-43\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
SUSE-SU-2021:3444-1
Vulnerability from csaf_suse - Published: 2021-10-15 07:03 - Updated: 2021-10-15 07:03Summary
Security update for rpm
Severity
Important
Notes
Title of the patch: Security update for rpm
Description of the patch: This update for rpm fixes the following issues:
Security issues fixed:
- CVE-2021-3421, CVE-2021-20271, CVE-2021-20266: Multiple header check improvements (bsc#1183543, bsc#1183545, bsc#1183632)
- PGP hardening changes (bsc#1185299)
- Fixed potential access of freed mem in ndb's glue code (bsc#1179416)
Maintaince issues fixed:
- Fixed zstd detection (bsc#1187670)
- Added ndb rofs support (bsc#1188548)
- Fixed deadlock when multiple rpm processes try tp acquire the database lock (bsc#1183659)
Patchnames: SUSE-2021-3444,SUSE-SLE-Module-Basesystem-15-SP2-2021-3444,SUSE-SLE-Module-Development-Tools-15-SP2-2021-3444,SUSE-SLE-Module-Public-Cloud-15-SP2-2021-3444,SUSE-SLE-Module-Python2-15-SP2-2021-3444,SUSE-SLE-Module-SUSE-Manager-Proxy-4.1-2021-3444,SUSE-SLE-Module-SUSE-Manager-Server-4.1-2021-3444,SUSE-SUSE-MicroOS-5.0-2021-3444
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
37 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
Affected products
Recommended
37 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
5.3 (Medium)
Affected products
Recommended
37 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
21 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for rpm",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for rpm fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2021-3421, CVE-2021-20271, CVE-2021-20266: Multiple header check improvements (bsc#1183543, bsc#1183545, bsc#1183632)\n- PGP hardening changes (bsc#1185299)\n- Fixed potential access of freed mem in ndb\u0027s glue code (bsc#1179416)\n\nMaintaince issues fixed:\n\n- Fixed zstd detection (bsc#1187670)\n- Added ndb rofs support (bsc#1188548)\n- Fixed deadlock when multiple rpm processes try tp acquire the database lock (bsc#1183659)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3444,SUSE-SLE-Module-Basesystem-15-SP2-2021-3444,SUSE-SLE-Module-Development-Tools-15-SP2-2021-3444,SUSE-SLE-Module-Public-Cloud-15-SP2-2021-3444,SUSE-SLE-Module-Python2-15-SP2-2021-3444,SUSE-SLE-Module-SUSE-Manager-Proxy-4.1-2021-3444,SUSE-SLE-Module-SUSE-Manager-Server-4.1-2021-3444,SUSE-SUSE-MicroOS-5.0-2021-3444",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3444-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3444-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213444-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3444-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-October/009598.html"
},
{
"category": "self",
"summary": "SUSE Bug 1179416",
"url": "https://bugzilla.suse.com/1179416"
},
{
"category": "self",
"summary": "SUSE Bug 1183543",
"url": "https://bugzilla.suse.com/1183543"
},
{
"category": "self",
"summary": "SUSE Bug 1183545",
"url": "https://bugzilla.suse.com/1183545"
},
{
"category": "self",
"summary": "SUSE Bug 1183632",
"url": "https://bugzilla.suse.com/1183632"
},
{
"category": "self",
"summary": "SUSE Bug 1183659",
"url": "https://bugzilla.suse.com/1183659"
},
{
"category": "self",
"summary": "SUSE Bug 1185299",
"url": "https://bugzilla.suse.com/1185299"
},
{
"category": "self",
"summary": "SUSE Bug 1187670",
"url": "https://bugzilla.suse.com/1187670"
},
{
"category": "self",
"summary": "SUSE Bug 1188548",
"url": "https://bugzilla.suse.com/1188548"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20266 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20266/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20271 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3421 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3421/"
}
],
"title": "Security update for rpm",
"tracking": {
"current_release_date": "2021-10-15T07:03:27Z",
"generator": {
"date": "2021-10-15T07:03:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3444-1",
"initial_release_date": "2021-10-15T07:03:27Z",
"revision_history": [
{
"date": "2021-10-15T07:03:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python2-rpm-4.14.1-22.4.1.aarch64",
"product": {
"name": "python2-rpm-4.14.1-22.4.1.aarch64",
"product_id": "python2-rpm-4.14.1-22.4.1.aarch64"
}
},
{
"category": "product_version",
"name": "python3-rpm-4.14.1-22.4.1.aarch64",
"product": {
"name": "python3-rpm-4.14.1-22.4.1.aarch64",
"product_id": "python3-rpm-4.14.1-22.4.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-4.14.1-22.4.2.aarch64",
"product": {
"name": "rpm-4.14.1-22.4.2.aarch64",
"product_id": "rpm-4.14.1-22.4.2.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-build-4.14.1-22.4.2.aarch64",
"product": {
"name": "rpm-build-4.14.1-22.4.2.aarch64",
"product_id": "rpm-build-4.14.1-22.4.2.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.14.1-22.4.2.aarch64",
"product": {
"name": "rpm-devel-4.14.1-22.4.2.aarch64",
"product_id": "rpm-devel-4.14.1-22.4.2.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-ndb-4.14.1-22.4.2.aarch64",
"product": {
"name": "rpm-ndb-4.14.1-22.4.2.aarch64",
"product_id": "rpm-ndb-4.14.1-22.4.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rpm-64bit-4.14.1-22.4.2.aarch64_ilp32",
"product": {
"name": "rpm-64bit-4.14.1-22.4.2.aarch64_ilp32",
"product_id": "rpm-64bit-4.14.1-22.4.2.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "rpm-ndb-64bit-4.14.1-22.4.2.aarch64_ilp32",
"product": {
"name": "rpm-ndb-64bit-4.14.1-22.4.2.aarch64_ilp32",
"product_id": "rpm-ndb-64bit-4.14.1-22.4.2.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "python2-rpm-4.14.1-22.4.1.i586",
"product": {
"name": "python2-rpm-4.14.1-22.4.1.i586",
"product_id": "python2-rpm-4.14.1-22.4.1.i586"
}
},
{
"category": "product_version",
"name": "python3-rpm-4.14.1-22.4.1.i586",
"product": {
"name": "python3-rpm-4.14.1-22.4.1.i586",
"product_id": "python3-rpm-4.14.1-22.4.1.i586"
}
},
{
"category": "product_version",
"name": "rpm-4.14.1-22.4.2.i586",
"product": {
"name": "rpm-4.14.1-22.4.2.i586",
"product_id": "rpm-4.14.1-22.4.2.i586"
}
},
{
"category": "product_version",
"name": "rpm-build-4.14.1-22.4.2.i586",
"product": {
"name": "rpm-build-4.14.1-22.4.2.i586",
"product_id": "rpm-build-4.14.1-22.4.2.i586"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.14.1-22.4.2.i586",
"product": {
"name": "rpm-devel-4.14.1-22.4.2.i586",
"product_id": "rpm-devel-4.14.1-22.4.2.i586"
}
},
{
"category": "product_version",
"name": "rpm-ndb-4.14.1-22.4.2.i586",
"product": {
"name": "rpm-ndb-4.14.1-22.4.2.i586",
"product_id": "rpm-ndb-4.14.1-22.4.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "python2-rpm-4.14.1-22.4.1.ppc64le",
"product": {
"name": "python2-rpm-4.14.1-22.4.1.ppc64le",
"product_id": "python2-rpm-4.14.1-22.4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python3-rpm-4.14.1-22.4.1.ppc64le",
"product": {
"name": "python3-rpm-4.14.1-22.4.1.ppc64le",
"product_id": "python3-rpm-4.14.1-22.4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-4.14.1-22.4.2.ppc64le",
"product": {
"name": "rpm-4.14.1-22.4.2.ppc64le",
"product_id": "rpm-4.14.1-22.4.2.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-build-4.14.1-22.4.2.ppc64le",
"product": {
"name": "rpm-build-4.14.1-22.4.2.ppc64le",
"product_id": "rpm-build-4.14.1-22.4.2.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.14.1-22.4.2.ppc64le",
"product": {
"name": "rpm-devel-4.14.1-22.4.2.ppc64le",
"product_id": "rpm-devel-4.14.1-22.4.2.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-ndb-4.14.1-22.4.2.ppc64le",
"product": {
"name": "rpm-ndb-4.14.1-22.4.2.ppc64le",
"product_id": "rpm-ndb-4.14.1-22.4.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python2-rpm-4.14.1-22.4.1.s390x",
"product": {
"name": "python2-rpm-4.14.1-22.4.1.s390x",
"product_id": "python2-rpm-4.14.1-22.4.1.s390x"
}
},
{
"category": "product_version",
"name": "python3-rpm-4.14.1-22.4.1.s390x",
"product": {
"name": "python3-rpm-4.14.1-22.4.1.s390x",
"product_id": "python3-rpm-4.14.1-22.4.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-4.14.1-22.4.2.s390x",
"product": {
"name": "rpm-4.14.1-22.4.2.s390x",
"product_id": "rpm-4.14.1-22.4.2.s390x"
}
},
{
"category": "product_version",
"name": "rpm-build-4.14.1-22.4.2.s390x",
"product": {
"name": "rpm-build-4.14.1-22.4.2.s390x",
"product_id": "rpm-build-4.14.1-22.4.2.s390x"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.14.1-22.4.2.s390x",
"product": {
"name": "rpm-devel-4.14.1-22.4.2.s390x",
"product_id": "rpm-devel-4.14.1-22.4.2.s390x"
}
},
{
"category": "product_version",
"name": "rpm-ndb-4.14.1-22.4.2.s390x",
"product": {
"name": "rpm-ndb-4.14.1-22.4.2.s390x",
"product_id": "rpm-ndb-4.14.1-22.4.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python2-rpm-4.14.1-22.4.1.x86_64",
"product": {
"name": "python2-rpm-4.14.1-22.4.1.x86_64",
"product_id": "python2-rpm-4.14.1-22.4.1.x86_64"
}
},
{
"category": "product_version",
"name": "python3-rpm-4.14.1-22.4.1.x86_64",
"product": {
"name": "python3-rpm-4.14.1-22.4.1.x86_64",
"product_id": "python3-rpm-4.14.1-22.4.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-4.14.1-22.4.2.x86_64",
"product": {
"name": "rpm-4.14.1-22.4.2.x86_64",
"product_id": "rpm-4.14.1-22.4.2.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-32bit-4.14.1-22.4.2.x86_64",
"product": {
"name": "rpm-32bit-4.14.1-22.4.2.x86_64",
"product_id": "rpm-32bit-4.14.1-22.4.2.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-build-4.14.1-22.4.2.x86_64",
"product": {
"name": "rpm-build-4.14.1-22.4.2.x86_64",
"product_id": "rpm-build-4.14.1-22.4.2.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.14.1-22.4.2.x86_64",
"product": {
"name": "rpm-devel-4.14.1-22.4.2.x86_64",
"product_id": "rpm-devel-4.14.1-22.4.2.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-ndb-4.14.1-22.4.2.x86_64",
"product": {
"name": "rpm-ndb-4.14.1-22.4.2.x86_64",
"product_id": "rpm-ndb-4.14.1-22.4.2.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-ndb-32bit-4.14.1-22.4.2.x86_64",
"product": {
"name": "rpm-ndb-32bit-4.14.1-22.4.2.x86_64",
"product_id": "rpm-ndb-32bit-4.14.1-22.4.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Python 2 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Python 2 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Python 2 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-python2:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy Module 4.1",
"product": {
"name": "SUSE Manager Proxy Module 4.1",
"product_id": "SUSE Manager Proxy Module 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-suse-manager-proxy:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server Module 4.1",
"product": {
"name": "SUSE Manager Server Module 4.1",
"product_id": "SUSE Manager Server Module 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-suse-manager-server:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.0",
"product": {
"name": "SUSE Linux Enterprise Micro 5.0",
"product_id": "SUSE Linux Enterprise Micro 5.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.14.1-22.4.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64"
},
"product_reference": "python3-rpm-4.14.1-22.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.14.1-22.4.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le"
},
"product_reference": "python3-rpm-4.14.1-22.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.14.1-22.4.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x"
},
"product_reference": "python3-rpm-4.14.1-22.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.14.1-22.4.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64"
},
"product_reference": "python3-rpm-4.14.1-22.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.14.1-22.4.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64"
},
"product_reference": "rpm-4.14.1-22.4.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.14.1-22.4.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le"
},
"product_reference": "rpm-4.14.1-22.4.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.14.1-22.4.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x"
},
"product_reference": "rpm-4.14.1-22.4.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.14.1-22.4.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64"
},
"product_reference": "rpm-4.14.1-22.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-32bit-4.14.1-22.4.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64"
},
"product_reference": "rpm-32bit-4.14.1-22.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.14.1-22.4.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64"
},
"product_reference": "rpm-devel-4.14.1-22.4.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.14.1-22.4.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le"
},
"product_reference": "rpm-devel-4.14.1-22.4.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.14.1-22.4.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x"
},
"product_reference": "rpm-devel-4.14.1-22.4.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.14.1-22.4.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64"
},
"product_reference": "rpm-devel-4.14.1-22.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64"
},
"product_reference": "rpm-build-4.14.1-22.4.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le"
},
"product_reference": "rpm-build-4.14.1-22.4.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x"
},
"product_reference": "rpm-build-4.14.1-22.4.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64"
},
"product_reference": "rpm-build-4.14.1-22.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-ndb-4.14.1-22.4.2.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64"
},
"product_reference": "rpm-ndb-4.14.1-22.4.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-ndb-4.14.1-22.4.2.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le"
},
"product_reference": "rpm-ndb-4.14.1-22.4.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-ndb-4.14.1-22.4.2.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x"
},
"product_reference": "rpm-ndb-4.14.1-22.4.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-ndb-4.14.1-22.4.2.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64"
},
"product_reference": "rpm-ndb-4.14.1-22.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rpm-4.14.1-22.4.1.aarch64 as component of SUSE Linux Enterprise Module for Python 2 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64"
},
"product_reference": "python2-rpm-4.14.1-22.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 2 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rpm-4.14.1-22.4.1.ppc64le as component of SUSE Linux Enterprise Module for Python 2 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le"
},
"product_reference": "python2-rpm-4.14.1-22.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 2 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rpm-4.14.1-22.4.1.s390x as component of SUSE Linux Enterprise Module for Python 2 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x"
},
"product_reference": "python2-rpm-4.14.1-22.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 2 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rpm-4.14.1-22.4.1.x86_64 as component of SUSE Linux Enterprise Module for Python 2 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64"
},
"product_reference": "python2-rpm-4.14.1-22.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 2 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.aarch64 as component of SUSE Manager Proxy Module 4.1",
"product_id": "SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64"
},
"product_reference": "rpm-build-4.14.1-22.4.2.aarch64",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.ppc64le as component of SUSE Manager Proxy Module 4.1",
"product_id": "SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le"
},
"product_reference": "rpm-build-4.14.1-22.4.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.s390x as component of SUSE Manager Proxy Module 4.1",
"product_id": "SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x"
},
"product_reference": "rpm-build-4.14.1-22.4.2.s390x",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.x86_64 as component of SUSE Manager Proxy Module 4.1",
"product_id": "SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
},
"product_reference": "rpm-build-4.14.1-22.4.2.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.aarch64 as component of SUSE Manager Server Module 4.1",
"product_id": "SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64"
},
"product_reference": "rpm-build-4.14.1-22.4.2.aarch64",
"relates_to_product_reference": "SUSE Manager Server Module 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.ppc64le as component of SUSE Manager Server Module 4.1",
"product_id": "SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le"
},
"product_reference": "rpm-build-4.14.1-22.4.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.s390x as component of SUSE Manager Server Module 4.1",
"product_id": "SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x"
},
"product_reference": "rpm-build-4.14.1-22.4.2.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.14.1-22.4.2.x86_64 as component of SUSE Manager Server Module 4.1",
"product_id": "SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
},
"product_reference": "rpm-build-4.14.1-22.4.2.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.14.1-22.4.1.aarch64 as component of SUSE Linux Enterprise Micro 5.0",
"product_id": "SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64"
},
"product_reference": "python3-rpm-4.14.1-22.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.14.1-22.4.1.x86_64 as component of SUSE Linux Enterprise Micro 5.0",
"product_id": "SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64"
},
"product_reference": "python3-rpm-4.14.1-22.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.14.1-22.4.2.aarch64 as component of SUSE Linux Enterprise Micro 5.0",
"product_id": "SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64"
},
"product_reference": "rpm-4.14.1-22.4.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.14.1-22.4.2.x86_64 as component of SUSE Linux Enterprise Micro 5.0",
"product_id": "SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64"
},
"product_reference": "rpm-4.14.1-22.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-20266",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20266"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in RPM\u0027s hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20266",
"url": "https://www.suse.com/security/cve/CVE-2021-20266"
},
{
"category": "external",
"summary": "SUSE Bug 1183632 for CVE-2021-20266",
"url": "https://bugzilla.suse.com/1183632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-10-15T07:03:27Z",
"details": "low"
}
],
"title": "CVE-2021-20266"
},
{
"cve": "CVE-2021-20271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20271"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in RPM\u0027s signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20271",
"url": "https://www.suse.com/security/cve/CVE-2021-20271"
},
{
"category": "external",
"summary": "SUSE Bug 1183545 for CVE-2021-20271",
"url": "https://bugzilla.suse.com/1183545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-10-15T07:03:27Z",
"details": "low"
}
],
"title": "CVE-2021-20271"
},
{
"cve": "CVE-2021-3421",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3421"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. This flaw affects RPM versions before 4.17.0-alpha.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3421",
"url": "https://www.suse.com/security/cve/CVE-2021-3421"
},
{
"category": "external",
"summary": "SUSE Bug 1183543 for CVE-2021-3421",
"url": "https://bugzilla.suse.com/1183543"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Micro 5.0:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Micro 5.0:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-rpm-4.14.1-22.4.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-32bit-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:rpm-devel-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP2:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:rpm-ndb-4.14.1-22.4.2.x86_64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.aarch64",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.ppc64le",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.s390x",
"SUSE Linux Enterprise Module for Python 2 15 SP2:python2-rpm-4.14.1-22.4.1.x86_64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Proxy Module 4.1:rpm-build-4.14.1-22.4.2.x86_64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.aarch64",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.ppc64le",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.s390x",
"SUSE Manager Server Module 4.1:rpm-build-4.14.1-22.4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-10-15T07:03:27Z",
"details": "moderate"
}
],
"title": "CVE-2021-3421"
}
]
}
SUSE-SU-2022:3939-1
Vulnerability from csaf_suse - Published: 2022-11-10 13:32 - Updated: 2022-11-10 13:32Summary
Security update for rpm
Severity
Moderate
Notes
Title of the patch: Security update for rpm
Description of the patch: This update for rpm fixes the following issues:
- Fixed PGP parsing bugs (bsc#1185299).
- Fixed various format handling bugs (bsc#996280).
- CVE-2021-3421: Fixed vulnerability where unsigned headers could be injected into the rpm database (bsc#1183543).
- CVE-2021-20271: Fixed vulnerability where a corrupted rpm could corrupt the rpm database (bsc#1183545).
- CVE-2021-20266: Fixed missing bounds check in hdrblobInit (bsc#1183632).
Bugfixes:
- Fixed deadlock when multiple rpm processes tried to acquire the database lock (bsc#1183659).
Patchnames: SUSE-2022-3939,SUSE-SLE-SDK-12-SP5-2022-3939,SUSE-SLE-SERVER-12-SP5-2022-3939
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
5.3 (Medium)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
19 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for rpm",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for rpm fixes the following issues:\n\n- Fixed PGP parsing bugs (bsc#1185299).\n- Fixed various format handling bugs (bsc#996280).\n- CVE-2021-3421: Fixed vulnerability where unsigned headers could be injected into the rpm database (bsc#1183543). \n- CVE-2021-20271: Fixed vulnerability where a corrupted rpm could corrupt the rpm database (bsc#1183545).\n- CVE-2021-20266: Fixed missing bounds check in hdrblobInit (bsc#1183632).\n\nBugfixes:\n\n- Fixed deadlock when multiple rpm processes tried to acquire the database lock (bsc#1183659).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-3939,SUSE-SLE-SDK-12-SP5-2022-3939,SUSE-SLE-SERVER-12-SP5-2022-3939",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_3939-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:3939-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20223939-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:3939-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012871.html"
},
{
"category": "self",
"summary": "SUSE Bug 1183543",
"url": "https://bugzilla.suse.com/1183543"
},
{
"category": "self",
"summary": "SUSE Bug 1183545",
"url": "https://bugzilla.suse.com/1183545"
},
{
"category": "self",
"summary": "SUSE Bug 1183632",
"url": "https://bugzilla.suse.com/1183632"
},
{
"category": "self",
"summary": "SUSE Bug 1183659",
"url": "https://bugzilla.suse.com/1183659"
},
{
"category": "self",
"summary": "SUSE Bug 1185299",
"url": "https://bugzilla.suse.com/1185299"
},
{
"category": "self",
"summary": "SUSE Bug 996280",
"url": "https://bugzilla.suse.com/996280"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20266 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20266/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20271 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3421 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3421/"
}
],
"title": "Security update for rpm",
"tracking": {
"current_release_date": "2022-11-10T13:32:14Z",
"generator": {
"date": "2022-11-10T13:32:14Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:3939-1",
"initial_release_date": "2022-11-10T13:32:14Z",
"revision_history": [
{
"date": "2022-11-10T13:32:14Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python3-rpm-4.11.2-16.26.1.aarch64",
"product": {
"name": "python3-rpm-4.11.2-16.26.1.aarch64",
"product_id": "python3-rpm-4.11.2-16.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-4.11.2-16.26.1.aarch64",
"product": {
"name": "rpm-4.11.2-16.26.1.aarch64",
"product_id": "rpm-4.11.2-16.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-build-4.11.2-16.26.1.aarch64",
"product": {
"name": "rpm-build-4.11.2-16.26.1.aarch64",
"product_id": "rpm-build-4.11.2-16.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.11.2-16.26.1.aarch64",
"product": {
"name": "rpm-devel-4.11.2-16.26.1.aarch64",
"product_id": "rpm-devel-4.11.2-16.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "rpm-python-4.11.2-16.26.1.aarch64",
"product": {
"name": "rpm-python-4.11.2-16.26.1.aarch64",
"product_id": "rpm-python-4.11.2-16.26.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rpm-64bit-4.11.2-16.26.1.aarch64_ilp32",
"product": {
"name": "rpm-64bit-4.11.2-16.26.1.aarch64_ilp32",
"product_id": "rpm-64bit-4.11.2-16.26.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-rpm-4.11.2-16.26.1.i586",
"product": {
"name": "python3-rpm-4.11.2-16.26.1.i586",
"product_id": "python3-rpm-4.11.2-16.26.1.i586"
}
},
{
"category": "product_version",
"name": "rpm-4.11.2-16.26.1.i586",
"product": {
"name": "rpm-4.11.2-16.26.1.i586",
"product_id": "rpm-4.11.2-16.26.1.i586"
}
},
{
"category": "product_version",
"name": "rpm-build-4.11.2-16.26.1.i586",
"product": {
"name": "rpm-build-4.11.2-16.26.1.i586",
"product_id": "rpm-build-4.11.2-16.26.1.i586"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.11.2-16.26.1.i586",
"product": {
"name": "rpm-devel-4.11.2-16.26.1.i586",
"product_id": "rpm-devel-4.11.2-16.26.1.i586"
}
},
{
"category": "product_version",
"name": "rpm-python-4.11.2-16.26.1.i586",
"product": {
"name": "rpm-python-4.11.2-16.26.1.i586",
"product_id": "rpm-python-4.11.2-16.26.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-rpm-4.11.2-16.26.1.ppc64le",
"product": {
"name": "python3-rpm-4.11.2-16.26.1.ppc64le",
"product_id": "python3-rpm-4.11.2-16.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-4.11.2-16.26.1.ppc64le",
"product": {
"name": "rpm-4.11.2-16.26.1.ppc64le",
"product_id": "rpm-4.11.2-16.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-build-4.11.2-16.26.1.ppc64le",
"product": {
"name": "rpm-build-4.11.2-16.26.1.ppc64le",
"product_id": "rpm-build-4.11.2-16.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.11.2-16.26.1.ppc64le",
"product": {
"name": "rpm-devel-4.11.2-16.26.1.ppc64le",
"product_id": "rpm-devel-4.11.2-16.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rpm-python-4.11.2-16.26.1.ppc64le",
"product": {
"name": "rpm-python-4.11.2-16.26.1.ppc64le",
"product_id": "rpm-python-4.11.2-16.26.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-rpm-4.11.2-16.26.1.s390",
"product": {
"name": "python3-rpm-4.11.2-16.26.1.s390",
"product_id": "python3-rpm-4.11.2-16.26.1.s390"
}
},
{
"category": "product_version",
"name": "rpm-4.11.2-16.26.1.s390",
"product": {
"name": "rpm-4.11.2-16.26.1.s390",
"product_id": "rpm-4.11.2-16.26.1.s390"
}
},
{
"category": "product_version",
"name": "rpm-build-4.11.2-16.26.1.s390",
"product": {
"name": "rpm-build-4.11.2-16.26.1.s390",
"product_id": "rpm-build-4.11.2-16.26.1.s390"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.11.2-16.26.1.s390",
"product": {
"name": "rpm-devel-4.11.2-16.26.1.s390",
"product_id": "rpm-devel-4.11.2-16.26.1.s390"
}
},
{
"category": "product_version",
"name": "rpm-python-4.11.2-16.26.1.s390",
"product": {
"name": "rpm-python-4.11.2-16.26.1.s390",
"product_id": "rpm-python-4.11.2-16.26.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-rpm-4.11.2-16.26.1.s390x",
"product": {
"name": "python3-rpm-4.11.2-16.26.1.s390x",
"product_id": "python3-rpm-4.11.2-16.26.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-4.11.2-16.26.1.s390x",
"product": {
"name": "rpm-4.11.2-16.26.1.s390x",
"product_id": "rpm-4.11.2-16.26.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-32bit-4.11.2-16.26.1.s390x",
"product": {
"name": "rpm-32bit-4.11.2-16.26.1.s390x",
"product_id": "rpm-32bit-4.11.2-16.26.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-build-4.11.2-16.26.1.s390x",
"product": {
"name": "rpm-build-4.11.2-16.26.1.s390x",
"product_id": "rpm-build-4.11.2-16.26.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.11.2-16.26.1.s390x",
"product": {
"name": "rpm-devel-4.11.2-16.26.1.s390x",
"product_id": "rpm-devel-4.11.2-16.26.1.s390x"
}
},
{
"category": "product_version",
"name": "rpm-python-4.11.2-16.26.1.s390x",
"product": {
"name": "rpm-python-4.11.2-16.26.1.s390x",
"product_id": "rpm-python-4.11.2-16.26.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-rpm-4.11.2-16.26.1.x86_64",
"product": {
"name": "python3-rpm-4.11.2-16.26.1.x86_64",
"product_id": "python3-rpm-4.11.2-16.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-4.11.2-16.26.1.x86_64",
"product": {
"name": "rpm-4.11.2-16.26.1.x86_64",
"product_id": "rpm-4.11.2-16.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-32bit-4.11.2-16.26.1.x86_64",
"product": {
"name": "rpm-32bit-4.11.2-16.26.1.x86_64",
"product_id": "rpm-32bit-4.11.2-16.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-build-4.11.2-16.26.1.x86_64",
"product": {
"name": "rpm-build-4.11.2-16.26.1.x86_64",
"product_id": "rpm-build-4.11.2-16.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-devel-4.11.2-16.26.1.x86_64",
"product": {
"name": "rpm-devel-4.11.2-16.26.1.x86_64",
"product_id": "rpm-devel-4.11.2-16.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "rpm-python-4.11.2-16.26.1.x86_64",
"product": {
"name": "rpm-python-4.11.2-16.26.1.x86_64",
"product_id": "rpm-python-4.11.2-16.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.11.2-16.26.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64"
},
"product_reference": "rpm-devel-4.11.2-16.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.11.2-16.26.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le"
},
"product_reference": "rpm-devel-4.11.2-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x"
},
"product_reference": "rpm-devel-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-devel-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
},
"product_reference": "rpm-devel-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.11.2-16.26.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64"
},
"product_reference": "python3-rpm-4.11.2-16.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.11.2-16.26.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le"
},
"product_reference": "python3-rpm-4.11.2-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x"
},
"product_reference": "python3-rpm-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64"
},
"product_reference": "python3-rpm-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.11.2-16.26.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64"
},
"product_reference": "rpm-4.11.2-16.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.11.2-16.26.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le"
},
"product_reference": "rpm-4.11.2-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x"
},
"product_reference": "rpm-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64"
},
"product_reference": "rpm-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-32bit-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x"
},
"product_reference": "rpm-32bit-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-32bit-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64"
},
"product_reference": "rpm-32bit-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.11.2-16.26.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64"
},
"product_reference": "rpm-build-4.11.2-16.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.11.2-16.26.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le"
},
"product_reference": "rpm-build-4.11.2-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x"
},
"product_reference": "rpm-build-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64"
},
"product_reference": "rpm-build-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-python-4.11.2-16.26.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64"
},
"product_reference": "rpm-python-4.11.2-16.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-python-4.11.2-16.26.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le"
},
"product_reference": "rpm-python-4.11.2-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-python-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x"
},
"product_reference": "rpm-python-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-python-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64"
},
"product_reference": "rpm-python-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.11.2-16.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64"
},
"product_reference": "python3-rpm-4.11.2-16.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.11.2-16.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le"
},
"product_reference": "python3-rpm-4.11.2-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x"
},
"product_reference": "python3-rpm-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rpm-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64"
},
"product_reference": "python3-rpm-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.11.2-16.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64"
},
"product_reference": "rpm-4.11.2-16.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.11.2-16.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le"
},
"product_reference": "rpm-4.11.2-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x"
},
"product_reference": "rpm-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64"
},
"product_reference": "rpm-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-32bit-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x"
},
"product_reference": "rpm-32bit-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-32bit-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64"
},
"product_reference": "rpm-32bit-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.11.2-16.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64"
},
"product_reference": "rpm-build-4.11.2-16.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.11.2-16.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le"
},
"product_reference": "rpm-build-4.11.2-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x"
},
"product_reference": "rpm-build-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-build-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64"
},
"product_reference": "rpm-build-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-python-4.11.2-16.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64"
},
"product_reference": "rpm-python-4.11.2-16.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-python-4.11.2-16.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le"
},
"product_reference": "rpm-python-4.11.2-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-python-4.11.2-16.26.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x"
},
"product_reference": "rpm-python-4.11.2-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rpm-python-4.11.2-16.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64"
},
"product_reference": "rpm-python-4.11.2-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-20266",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20266"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in RPM\u0027s hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20266",
"url": "https://www.suse.com/security/cve/CVE-2021-20266"
},
{
"category": "external",
"summary": "SUSE Bug 1183632 for CVE-2021-20266",
"url": "https://bugzilla.suse.com/1183632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-10T13:32:14Z",
"details": "low"
}
],
"title": "CVE-2021-20266"
},
{
"cve": "CVE-2021-20271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20271"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in RPM\u0027s signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20271",
"url": "https://www.suse.com/security/cve/CVE-2021-20271"
},
{
"category": "external",
"summary": "SUSE Bug 1183545 for CVE-2021-20271",
"url": "https://bugzilla.suse.com/1183545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-10T13:32:14Z",
"details": "low"
}
],
"title": "CVE-2021-20271"
},
{
"cve": "CVE-2021-3421",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3421"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. This flaw affects RPM versions before 4.17.0-alpha.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3421",
"url": "https://www.suse.com/security/cve/CVE-2021-3421"
},
{
"category": "external",
"summary": "SUSE Bug 1183543 for CVE-2021-3421",
"url": "https://bugzilla.suse.com/1183543"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:python3-rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-32bit-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-build-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:rpm-python-4.11.2-16.26.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:rpm-devel-4.11.2-16.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-11-10T13:32:14Z",
"details": "moderate"
}
],
"title": "CVE-2021-3421"
}
]
}
WID-SEC-W-2023-1854
Vulnerability from csaf_certbund - Published: 2021-11-09 23:00 - Updated: 2023-07-23 22:00Summary
Red Hat Enterprise Linux (rpm): Schwachstelle ermöglicht Denial of Service
Severity
Niedrig
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Der RPM Package Manager (RPM) ist ein Kommandozeilen Paket-Management Tool zur Installation, Deinstallation, Überprüfung, Abfrage und Aktualisieren von Software-Paketen auf Linux Systemen.
Angriff: Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux und RPM ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme: - UNIX
- Linux
Es existiert eine Schwachstelle in Red Hat Enterprise Linux und RPM. Der Fehler besteht in der Komponente hdrblobInit() in lib/header.c aufgrund eines Out-of-bounds-Read. Ein entfernter authentisierter Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source RPM
Open Source
|
cpe:/a:rpm:rpm:-
|
— | |
|
Dell NetWorker vProxy < 4.3.0-40
Dell
|
cpe:/a:dell:networker:vproxy__4.3.0-40
|
— | |
|
Red Hat Enterprise Linux 8
Red Hat
|
cpe:/o:redhat:enterprise_linux:8
|
— |
References
9 references
{
"document": {
"aggregate_severity": {
"text": "niedrig"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.\r\nDer RPM Package Manager (RPM) ist ein Kommandozeilen Paket-Management Tool zur Installation, Deinstallation, \u00dcberpr\u00fcfung, Abfrage und Aktualisieren von Software-Paketen auf Linux Systemen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux und RPM ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX\n- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-1854 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2023-1854.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-1854 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1854"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2023-069 vom 2023-07-21",
"url": "https://www.dell.com/support/kbdoc/de-de/000210964/dsa-2023-069-dell-networker-vproxy-security-update-for-multiple-vulnerabilities-detected-on-vproxy-4-3-0-38"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2021-11-09",
"url": "https://access.redhat.com/errata/RHSA-2021:4489"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:4032 vom 2021-11-17",
"url": "https://access.redhat.com/errata/RHSA-2021:4032"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:4848 vom 2021-11-29",
"url": "https://access.redhat.com/errata/RHSA-2021:4848"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:4845 vom 2021-11-29",
"url": "https://access.redhat.com/errata/RHSA-2021:4845"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0318 vom 2022-01-27",
"url": "https://access.redhat.com/errata/RHSA-2022:0318"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0434 vom 2022-02-04",
"url": "https://access.redhat.com/errata/RHSA-2022:0434"
}
],
"source_lang": "en-US",
"title": "Red Hat Enterprise Linux (rpm): Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2023-07-23T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:56:04.275+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2023-1854",
"initial_release_date": "2021-11-09T23:00:00.000+00:00",
"revision_history": [
{
"date": "2021-11-09T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2021-11-16T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2021-11-29T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-01-27T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-02-03T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2023-07-23T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Dell aufgenommen"
}
],
"status": "final",
"version": "6"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Dell NetWorker vProxy \u003c 4.3.0-40",
"product": {
"name": "Dell NetWorker vProxy \u003c 4.3.0-40",
"product_id": "T028847",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:vproxy__4.3.0-40"
}
}
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source RPM",
"product": {
"name": "Open Source RPM",
"product_id": "T020997",
"product_identification_helper": {
"cpe": "cpe:/a:rpm:rpm:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux 8",
"product": {
"name": "Red Hat Enterprise Linux 8",
"product_id": "T014111",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-20266",
"notes": [
{
"category": "description",
"text": "Es existiert eine Schwachstelle in Red Hat Enterprise Linux und RPM. Der Fehler besteht in der Komponente hdrblobInit() in lib/header.c aufgrund eines Out-of-bounds-Read. Ein entfernter authentisierter Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
}
],
"product_status": {
"known_affected": [
"T020997",
"T028847",
"T014111"
]
},
"release_date": "2021-11-09T23:00:00.000+00:00",
"title": "CVE-2021-20266"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…