Security Advisory

CVE-2008-3187

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-07-21 16:00:00

Last updated 2024-08-07 09:28:41

Assigner mitre

State PUBLISHED

Description

zypp-refresh-patches in zypper in SUSE openSUSE 10.2, 10.3, and 11.0 does not ask the user before accepting repository keys, which allows remote repositories to cause a denial of service (package data corruption) via a spoofed key.

← Browse all CVEs View on cve.org ↗