Information on source package libsolv

Available versions

ReleaseVersion
jessie0.6.5-1+deb8u1
stretch0.6.24-1+deb9u2
buster0.6.35-2+deb10u1
bullseye0.7.17-1+deb11u1
bookworm0.7.23-1+deb12u1
trixie0.7.28-1
sid0.7.28-1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2021-33938vulnerablevulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedBuffer overflow vulnerability in function prune_to_recommended in src/ ...
CVE-2021-33930vulnerablevulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedBuffer overflow vulnerability in function pool_installable_whatprovide ...
CVE-2021-33929vulnerablevulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedBuffer overflow vulnerability in function pool_disabled_solvable in sr ...
CVE-2021-33928vulnerablevulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedBuffer overflow vulnerability in function pool_installable in src/repo ...
CVE-2018-20533vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedfixedThere is a NULL pointer dereference at ext/testcase.c (function testca ...
CVE-2018-20532vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedfixedThere is a NULL pointer dereference at ext/testcase.c (function testca ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2021-44568vulnerablevulnerablevulnerablefixedfixedfixedfixedTwo heap-overflow vulnerabilities exist in openSUSE/libsolv libsolv th ...
CVE-2021-3200vulnerablevulnerablevulnerablefixedfixedfixedfixedBuffer overflow vulnerability in libsolv 2020-12-13 via the Solver * t ...
CVE-2018-20534vulnerablevulnerablevulnerablefixedfixedfixedfixedThere is an illegal address access at ext/testcase.c in libsolv.a in l ...

Resolved issues

BugDescription
CVE-2019-20387repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-ba ...

Security announcements

DSA / DLADescription
DLA-2088-1libsolv - security update
Search for package or bug name: Reporting problems