VYPR

rpm package

suse/fwupd&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP2

pkg:rpm/suse/fwupd&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP2

Vulnerabilities (1)

  • CVE-2020-10759Sep 15, 2020
    affected < 1.2.14-5.8.2fixed 1.2.14-5.8.2

    A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practical because the Linux Vendor Firmware Service (LVFS) is either not implemented or