VYPR

rpm package

opensuse/fwupd&distro=openSUSE Leap 15.2

pkg:rpm/opensuse/fwupd&distro=openSUSE%20Leap%2015.2

Vulnerabilities (1)

  • CVE-2020-10759Sep 15, 2020
    affected < 1.2.14-lp152.3.9.1fixed 1.2.14-lp152.3.9.1

    A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practical because the Linux Vendor Firmware Service (LVFS) is either not implemented or