This update for libzypp fixes the following issues:
Security issue fixed:
CVE-2019-18900: Fixed assert cookie file that was world readable (bsc#1158763).
Affected Packages
libzypp
SUSE Linux Enterprise Desktop 12 SP4SUSE Linux Enterprise Server 12 SP4SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP4SUSE Linux Enterprise Server for SAP Applications 12 SP5
Fixed in:
16.21.2-2.45.1
libzypp-devel
SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5SUSE Linux Enterprise Software Development Kit 12 SP4SUSE Linux Enterprise Software Development Kit 12 SP5
Fixed in:
16.21.2-2.45.1
libzypp-devel-doc
SUSE Linux Enterprise Software Development Kit 12 SP4SUSE Linux Enterprise Software Development Kit 12 SP5