Security update for rpm
Announcement ID: | SUSE-SU-2021:3444-1 |
---|---|
Rating: | important |
References: | |
Cross-References: | |
CVSS scores: |
|
Affected Products: |
|
An update that solves three vulnerabilities and has five security fixes can now be installed.
Description:
This update for rpm fixes the following issues:
Security issues fixed:
- CVE-2021-3421, CVE-2021-20271, CVE-2021-20266: Multiple header check improvements (bsc#1183543, bsc#1183545, bsc#1183632)
- PGP hardening changes (bsc#1185299)
- Fixed potential access of freed mem in ndb's glue code (bsc#1179416)
Maintaince issues fixed:
- Fixed zstd detection (bsc#1187670)
- Added ndb rofs support (bsc#1188548)
- Fixed deadlock when multiple rpm processes try tp acquire the database lock (bsc#1183659)
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
Basesystem Module 15-SP2
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-3444=1
-
Development Tools Module 15-SP2
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP2-2021-3444=1
-
Public Cloud Module 15-SP2
zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP2-2021-3444=1
-
Python 2 Module 15-SP2
zypper in -t patch SUSE-SLE-Module-Python2-15-SP2-2021-3444=1
-
SUSE Manager Proxy 4.1 Module 4.1
zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Proxy-4.1-2021-3444=1
-
SUSE Manager Server 4.1 Module 4.1
zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Server-4.1-2021-3444=1
-
SUSE Linux Enterprise Micro 5.0
zypper in -t patch SUSE-SUSE-MicroOS-5.0-2021-3444=1
Package List:
-
Basesystem Module 15-SP2 (aarch64 ppc64le s390x x86_64)
- rpm-debuginfo-4.14.1-22.4.2
- python3-rpm-4.14.1-22.4.1
- python3-rpm-debuginfo-4.14.1-22.4.1
- python-rpm-debugsource-4.14.1-22.4.1
- rpm-devel-4.14.1-22.4.2
- rpm-debugsource-4.14.1-22.4.2
- rpm-4.14.1-22.4.2
-
Basesystem Module 15-SP2 (x86_64)
- rpm-32bit-debuginfo-4.14.1-22.4.2
- rpm-32bit-4.14.1-22.4.2
-
Development Tools Module 15-SP2 (aarch64 ppc64le s390x x86_64)
- rpm-build-4.14.1-22.4.2
- rpm-debuginfo-4.14.1-22.4.2
- rpm-debugsource-4.14.1-22.4.2
- rpm-build-debuginfo-4.14.1-22.4.2
-
Public Cloud Module 15-SP2 (aarch64 ppc64le s390x x86_64)
- rpm-ndb-debuginfo-4.14.1-22.4.2
- rpm-ndb-debugsource-4.14.1-22.4.2
- rpm-ndb-4.14.1-22.4.2
-
Python 2 Module 15-SP2 (aarch64 ppc64le s390x x86_64)
- python-rpm-debugsource-4.14.1-22.4.1
- python2-rpm-debuginfo-4.14.1-22.4.1
- python2-rpm-4.14.1-22.4.1
-
SUSE Manager Proxy 4.1 Module 4.1 (aarch64 ppc64le s390x x86_64)
- rpm-build-4.14.1-22.4.2
- rpm-debuginfo-4.14.1-22.4.2
- rpm-debugsource-4.14.1-22.4.2
- rpm-build-debuginfo-4.14.1-22.4.2
-
SUSE Manager Server 4.1 Module 4.1 (aarch64 ppc64le s390x x86_64)
- rpm-build-4.14.1-22.4.2
- rpm-debuginfo-4.14.1-22.4.2
- rpm-debugsource-4.14.1-22.4.2
- rpm-build-debuginfo-4.14.1-22.4.2
-
SUSE Linux Enterprise Micro 5.0 (aarch64 x86_64)
- rpm-debuginfo-4.14.1-22.4.2
- python3-rpm-4.14.1-22.4.1
- python3-rpm-debuginfo-4.14.1-22.4.1
- python-rpm-debugsource-4.14.1-22.4.1
- rpm-debugsource-4.14.1-22.4.2
- rpm-4.14.1-22.4.2
References:
- https://www.suse.com/security/cve/CVE-2021-20266.html
- https://www.suse.com/security/cve/CVE-2021-20271.html
- https://www.suse.com/security/cve/CVE-2021-3421.html
- https://bugzilla.suse.com/show_bug.cgi?id=1179416
- https://bugzilla.suse.com/show_bug.cgi?id=1183543
- https://bugzilla.suse.com/show_bug.cgi?id=1183545
- https://bugzilla.suse.com/show_bug.cgi?id=1183632
- https://bugzilla.suse.com/show_bug.cgi?id=1183659
- https://bugzilla.suse.com/show_bug.cgi?id=1185299
- https://bugzilla.suse.com/show_bug.cgi?id=1187670
- https://bugzilla.suse.com/show_bug.cgi?id=1188548