0.001 Low
EPSS
Percentile
48.4%
libsolv is vulnerable to denial of service. The vulnerability exists through the pool_installable_whatprovides function in repo.h, allowing an attacker to crash the application via malicious input.
pool_installable_whatprovides
repo.h
access.redhat.com/errata/RHSA-2021:4060
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=2000705
github.com/openSUSE/libsolv/issues/417