Security update for python3-rpm, rpm, rpm-python
This rpm update fixes the following security and non security issues:
- honor --noglob in install mode [bnc#892431]
- check for bad invalid name sizes [bnc#908128] [CVE-2014-8118]
- create files with mode 0 [bnc#906803] [CVE-2013-6435]
This update also includes version updates of rpm-python and python3-rpm.
-
Submitted by
Michael Schröder (mlschroe)
Fixed bugs
bnc#892431
kISO IPv6 PXE boot installation fails during first reboot
bnc#908128
VUL-0: CVE-2014-8118: rpm: integer overflow leading to stack-based overflow
bnc#906803
VUL-1: CVE-2013-6435: rpm: Skipping rpm verification race
