Security update for librepo
This update for librepo fixes the following issues:
- Fixed path validation to prevent directory traversal attacks (bsc#1175475, CVE-2020-14352)
This update was imported from the SUSE:SLE-15-SP2:Update update project.
-
Submitted by
Christian Vögl (cvoegl)
Fixed bugs
bnc#1175475
VUL-0: CVE-2020-14352: librepo: missing path validation in repomd.xml may lead to directory traversal
