ELSA-2021-4408

ELSA-2021-4408 - libsolv security and bug fix update

Type:	SECURITY
Impact:	LOW
Release Date:	2021-11-16

Description

[0.7.19-1]
- Update to 0.7.19
- repo_add_conda: add flag to skip v2 packages
- fix rare segfault in resolve_jobrules() that could happen if new rules are learnt
- fix error handling in solv_xfopen_fd()
- fix memory leaks

[0.7.17-2]
- Fix rpm dependency

[0.7.17-1]
- Update to 0.7.17
- selected bug fixes:
* repo_write: fix handling of nested flexarray
* improve choicerule generation a bit more to cover more cases
* harden testcase parser against repos being added too late
* support python-3.10
* check /var/lib/rpm macro in rpmdb code
- new features:
* handle default/visible/langonly attributes in comps parser
* support multiple collections in updateinfo parser
* add '-D' option in rpmdb2solv to set the dbpath

Related CVEs

CVE-2021-3200

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	libsolv-0.7.19-1.el8.src.rpm	bb32b384379955083ce9029c4826999f5bbdefc17e04c343ee4f14715ddaabfa	-	ol8_aarch64_baseos_latest
	libsolv-0.7.19-1.el8.src.rpm	bb32b384379955083ce9029c4826999f5bbdefc17e04c343ee4f14715ddaabfa	-	ol8_aarch64_codeready_builder
	libsolv-0.7.19-1.el8.src.rpm	bb32b384379955083ce9029c4826999f5bbdefc17e04c343ee4f14715ddaabfa	-	ol8_aarch64_u5_baseos_base
	libsolv-0.7.19-1.el8.aarch64.rpm	2460e40f282d7144cd36b7383ffac508864860bfb99d9442f6d79ed47e9aeab4	-	ol8_aarch64_baseos_latest
	libsolv-0.7.19-1.el8.aarch64.rpm	2460e40f282d7144cd36b7383ffac508864860bfb99d9442f6d79ed47e9aeab4	-	ol8_aarch64_u5_baseos_base
	libsolv-devel-0.7.19-1.el8.aarch64.rpm	3ec1cf0d406909c0f0bd36462c3ff22e0c90f815c80c00e9967306a5edac35d9	-	ol8_aarch64_codeready_builder
	libsolv-tools-0.7.19-1.el8.aarch64.rpm	67f017627a87eca589ab492278090bc426e8840b5370885dba37f26c0add8af1	-	ol8_aarch64_codeready_builder
	python3-solv-0.7.19-1.el8.aarch64.rpm	aaa27b90e09eace168adb6f97b9c420da3429582510c72d08aa102c873b2d495	-	ol8_aarch64_baseos_latest
	python3-solv-0.7.19-1.el8.aarch64.rpm	aaa27b90e09eace168adb6f97b9c420da3429582510c72d08aa102c873b2d495	-	ol8_aarch64_u5_baseos_base
Oracle Linux 8 (x86_64)	libsolv-0.7.19-1.el8.src.rpm	bb32b384379955083ce9029c4826999f5bbdefc17e04c343ee4f14715ddaabfa	-	ol8_x86_64_baseos_latest
	libsolv-0.7.19-1.el8.src.rpm	bb32b384379955083ce9029c4826999f5bbdefc17e04c343ee4f14715ddaabfa	-	ol8_x86_64_codeready_builder
	libsolv-0.7.19-1.el8.src.rpm	bb32b384379955083ce9029c4826999f5bbdefc17e04c343ee4f14715ddaabfa	-	ol8_x86_64_u5_baseos_base
	libsolv-0.7.19-1.el8.i686.rpm	78b983e73ea00306c4bf92e34c126d947c4e6070613eddc685c42fdffa618c49	-	ol8_x86_64_baseos_latest
	libsolv-0.7.19-1.el8.i686.rpm	78b983e73ea00306c4bf92e34c126d947c4e6070613eddc685c42fdffa618c49	-	ol8_x86_64_u5_baseos_base
	libsolv-0.7.19-1.el8.x86_64.rpm	769f92d8916d69df2a013caa0ae6ea79bf9d1ca87c9ac0aa60a02063b405bf68	-	ol8_x86_64_baseos_latest
	libsolv-0.7.19-1.el8.x86_64.rpm	769f92d8916d69df2a013caa0ae6ea79bf9d1ca87c9ac0aa60a02063b405bf68	-	ol8_x86_64_u5_baseos_base
	libsolv-devel-0.7.19-1.el8.i686.rpm	cd28dbed2b68038a49841809ef4e16943156c11fa0a73e45f0c4bef9720defcb	-	ol8_x86_64_codeready_builder
	libsolv-devel-0.7.19-1.el8.x86_64.rpm	5282d9cebcc952c736bf60d6b039ef44f00701086222030e9b4254a07e055295	-	ol8_x86_64_codeready_builder
	libsolv-tools-0.7.19-1.el8.x86_64.rpm	a24d441ec9936dd4e3862c3e42f2060e8710fe97f49b16ba2c12d1c7ee3b17f5	-	ol8_x86_64_codeready_builder
	python3-solv-0.7.19-1.el8.x86_64.rpm	48b672fef2042ce6397c973984c97e1477829842d9b8fe96e83fc3273ce468aa	-	ol8_x86_64_baseos_latest
	python3-solv-0.7.19-1.el8.x86_64.rpm	48b672fef2042ce6397c973984c97e1477829842d9b8fe96e83fc3273ce468aa	-	ol8_x86_64_u5_baseos_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team