Unrated severityNVD Advisory· Published Aug 31, 2018· Updated Sep 17, 2024
libzypp does not reevaluate malicious rpms once downloaded
CVE-2018-7685
Description
The decoupled download and installation steps in libzypp before 17.5.0 could lead to a corrupted RPM being left in the cache, where a later call would not display the corrupted RPM warning and allow installation, a problem caused by malicious warnings only displayed during download.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
30- osv-coords28 versionspkg:rpm/opensuse/libzypp&distro=openSUSE%20Tumbleweedpkg:rpm/suse/libsolv&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/libsolv&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015pkg:rpm/suse/libzypp&distro=SUSE%20Enterprise%20Storage%204pkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSSpkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/libzypp&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/libzypp&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/zypper&distro=SUSE%20Enterprise%20Storage%204pkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSSpkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/zypper&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/zypper&distro=SUSE%20OpenStack%20Cloud%207
< 17.28.4-1.2+ 27 more
- (no CPE)range: < 17.28.4-1.2
- (no CPE)range: < 0.6.35-3.5.2
- (no CPE)range: < 0.6.35-3.5.2
- (no CPE)range: < 16.17.20-27.52.1
- (no CPE)range: < 16.17.20-2.33.2
- (no CPE)range: < 17.6.4-3.10.1
- (no CPE)range: < 15.25.17-46.22.1
- (no CPE)range: < 16.17.20-27.52.1
- (no CPE)range: < 16.17.20-27.52.1
- (no CPE)range: < 16.17.20-2.33.2
- (no CPE)range: < 14.45.17-2.82.1
- (no CPE)range: < 15.25.17-46.22.1
- (no CPE)range: < 16.17.20-27.52.1
- (no CPE)range: < 16.17.20-2.33.2
- (no CPE)range: < 16.17.20-2.33.2
- (no CPE)range: < 16.17.20-27.52.1
- (no CPE)range: < 1.13.45-18.33.1
- (no CPE)range: < 1.13.45-21.21.2
- (no CPE)range: < 1.14.10-3.7.1
- (no CPE)range: < 1.12.59-46.10.1
- (no CPE)range: < 1.13.45-18.33.1
- (no CPE)range: < 1.13.45-18.33.1
- (no CPE)range: < 1.13.45-21.21.2
- (no CPE)range: < 1.11.70-2.69.2
- (no CPE)range: < 1.12.59-46.10.1
- (no CPE)range: < 1.13.45-18.33.1
- (no CPE)range: < 1.13.45-21.21.2
- (no CPE)range: < 1.13.45-18.33.1
- SUSE/libzyppv5Range: unspecified
Patches
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
3- lists.suse.com/pipermail/sle-security-updates/2018-August/004510.htmlmitrex_refsource_MISC
- bugzilla.suse.com/show_bug.cgimitrex_refsource_CONFIRM
- www.suse.com/de-de/security/cve/CVE-2018-7685/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.