Oval Definition:
oval:org.opensuse.security:def:20083187
Revision Date
:
2015-11-16
Version
:
1
Title
:
CVE-2008-3187
Description
:
zypp-refresh-patches in zypper in SUSE openSUSE 10.2, 10.3, and 11.0 does not ask the user before accepting repository keys, which allows remote repositories to cause a denial of service (package data corruption) via a spoofed key.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2008-3187
Platform(s)
:
openSUSE 10.2
openSUSE 10.3
openSUSE 11.0
Product(s)
:
Definition Synopsis
suse110 is installed
AND
Package Information
libzypp-devel less than 4.26.7-0.1
OR
libzypp less than 4.26.7-0.1
OR
yast2-pkg-bindings-devel-doc less than 2.16.40-0.1
OR
yast2-pkg-bindings less than 2.16.40-0.1
OR
zypper less than 0.11.9-0.1
BACK