SUSE-SU-2026:21738-1

Details

Description of the patch:

This update for libsolv, libzypp, zypper fixes the following issues:

CVE-2026-44933: prevent configured scripts from escaping the sigcheck directory (bsc#1265223)

Changes in libsolv:

update to version 0.7.37:
- fix parsing of sha512 checksums in debian repositories
- improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast
- fix parsing of recommands in the old Mandriva synthesis format

Changes in libzypp:

update to version 17.38.9:
- Mandatory signature verification plugin support (jsc#PED-11922)

Changes in zypper:

update to version 1.14.97:
- Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes).

Affected Packages

libsolv-tools-base

SUSE Linux Micro 6.1

Fixed in:

0.7.37-slfo.1.1_1.1

libzypp

SUSE Linux Micro 6.1

Fixed in:

17.38.9-slfo.1.1_1.1

zypper

SUSE Linux Micro 6.1

Fixed in: