0.001 Low
EPSS
Percentile
48.4%
libsolv is vulnerable to denial of service. The vulnerability exists through the pool_disabled_solvable function in repo.h, allowing an attacker to crash the application via malicious input.
pool_disabled_solvable
repo.h
access.redhat.com/errata/RHSA-2021:4060
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=2000703
github.com/openSUSE/libsolv/issues/417