Advisories ยป MGASA-2020-0245

Updated libzypp packages fix security vulnerability

Publication date: 10 Jun 2020
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-18900

Description

Libzypp from mageia 7 is affected by a security issue.
This update fixes this.


Incorrect Default Permissions vulnerability in libzypp allowed local
attackers to read a cookie store used by libzypp, exposing private
cookies.
                

References

SRPMS

7/core