Known Vulnerabilities for Libsolv by Opensuse
Listed below are 9 of the newest known vulnerabilities associated with "Libsolv" by "Opensuse".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-33938 | Buffer overflow vulnerability in function prune_to_recommended in src/policy.c in libsolv before 0.7.17 allows attackers to c... | 7.5 - HIGH | 2021-09-02 | 2021-09-07 |
| CVE-2021-33930 | Buffer overflow vulnerability in function pool_installable_whatprovides in src/repo.h in libsolv before 0.7.17 allows attacke... | 7.5 - HIGH | 2021-09-02 | 2021-09-07 |
| CVE-2021-33929 | Buffer overflow vulnerability in function pool_disabled_solvable in src/repo.h in libsolv before 0.7.17 allows attackers to c... | 7.5 - HIGH | 2021-09-02 | 2021-09-07 |
| CVE-2021-33928 | Buffer overflow vulnerability in function pool_installable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a... | 7.5 - HIGH | 2021-09-02 | 2021-09-07 |
| CVE-2021-3200 | Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool, FILE *fp, const char *testcase... | 3.3 - LOW | 2021-05-18 | 2022-07-30 |
| CVE-2019-20387 | repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is ... | 7.5 - HIGH | 2020-01-21 | 2023-01-31 |
| CVE-2018-20534 | ** DISPUTED ** There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a d... | 6.5 - MEDIUM | 2018-12-28 | 2023-11-07 |
| CVE-2018-20533 | There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through ... | 6.5 - MEDIUM | 2018-12-28 | 2019-08-06 |
| CVE-2018-20532 | There is a NULL pointer dereference at ext/testcase.c (function testcase_read) in libsolvext.a in libsolv through 0.7.2 that ... | 6.5 - MEDIUM | 2018-12-28 | 2019-08-06 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Opensuse | Libsolv | 0.7.9 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.8 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.7 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.6 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.5 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.4 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.3 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.2 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.11 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.10 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.1 | All | All | All |
| Application | Opensuse | Libsolv | 0.7.0 | All | All | All |
| Application | Opensuse | Libsolv | 0.6.9 | All | All | All |
| Application | Opensuse | Libsolv | 0.6.8 | All | All | All |
| Application | Opensuse | Libsolv | 0.6.7 | All | All | All |
| Application | Opensuse | Libsolv | 0.6.6 | All | All | All |
| Application | Opensuse | Libsolv | 0.6.5 | All | All | All |
| Application | Opensuse | Libsolv | 0.6.4 | All | All | All |
| Application | Opensuse | Libsolv | 0.6.36 | All | All | All |
| Application | Opensuse | Libsolv | 0.6.35 | All | All | All |