First published: Wed Apr 16 2014(Updated: )
The Zypper (aka zypp) backend in PackageKit before 0.8.8 allows local users to downgrade packages via the "install updates" method.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Packagekit Project Packagekit | <=0.8.7 | |
Packagekit Project Packagekit | =0.8.1 | |
Packagekit Project Packagekit | =0.8.2 | |
Packagekit Project Packagekit | =0.8.3 | |
Packagekit Project Packagekit | =0.8.4 | |
Packagekit Project Packagekit | =0.8.5 | |
Packagekit Project Packagekit | =0.8.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.