CVE-2006-0803

Name of the Vulnerable Software and Affected Versions openSUSE versions (affected versions not specified) SUSE Linux Enterprise versions (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the liby2util and liby2util-devel packages of openSUSE and SUSE Linux Enterprise operating systems. These vulnerabilities can be exploited remotely and may lead to a breach of protected information integrity. The YaST Online Update script handling has a flaw in its signature verification functionality when using gpg 1.4.x, which prevents it from detecting malicious scripts or code that do not pass the signature check.

Recommendations For openSUSE, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For SUSE Linux Enterprise, at the moment, there is no information about a newer version that contains a fix for this vulnerability.