SUSE-YU-2013:1408-1 -- Security update for libzypp
Description:
libzypp did not handle multiple gpg pubkeys in therepomd.xml.key and content.key consistently and secure.Attackers could have exploited this to add their own keysand pretend it's from SUSE.Security Issue reference: * CVE-2013-3704