libzypp accepts unsigned packages even when configured to check signatures
CVE-2017-7436

8.1HIGH

Key Information:

Vendor: Suse
Status: Libzypp
Vendor: CVE Published:; 1 March 2018

Summary

In libzypp before 20170803 it was possible to retrieve unsigned packages without a warning to the user which could lead to man in the middle or malicious servers to inject malicious RPM packages into a users system.

Affected Version(s)

libzypp < 20170803

References

https://lists.opensuse.org/opensuse-security-announce/201...

vendor-advisoryx_refsource_SUSE

https://bugzilla.suse.com/show_bug.cgi?id=1038984

x_refsource_CONFIRM

https://www.suse.com/de-de/security/cve/CVE-2017-7436/

x_refsource_CONFIRM

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 1, 2018
Vulnerability Reserved
Apr 5, 2017

Credit

Boleslaw Tokarski