{"affected":[{"ecosystem_specific":{"binaries":[{"python3-rpm":"4.14.3-150400.59.16.1","rpm":"4.14.3-150400.59.16.1","rpm-32bit":"4.14.3-150400.59.16.1","rpm-devel":"4.14.3-150400.59.16.1","rpm-imaevmsign":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP6","name":"python-rpm","purl":"pkg:rpm/suse/python-rpm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-rpm":"4.14.3-150400.59.16.1","rpm":"4.14.3-150400.59.16.1","rpm-32bit":"4.14.3-150400.59.16.1","rpm-devel":"4.14.3-150400.59.16.1","rpm-imaevmsign":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP6","name":"rpm","purl":"pkg:rpm/suse/rpm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"rpm-build":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15 SP6","name":"rpm","purl":"pkg:rpm/suse/rpm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"rpm-ndb":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 15 SP6","name":"rpm-ndb","purl":"pkg:rpm/suse/rpm-ndb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python311-rpm":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 3 15 SP6","name":"python-rpm","purl":"pkg:rpm/suse/python-rpm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-rpm":"4.14.3-150400.59.16.1","python311-rpm":"4.14.3-150400.59.16.1","rpm":"4.14.3-150400.59.16.1","rpm-32bit":"4.14.3-150400.59.16.1","rpm-build":"4.14.3-150400.59.16.1","rpm-devel":"4.14.3-150400.59.16.1","rpm-imaevmsign":"4.14.3-150400.59.16.1","rpm-ndb":"4.14.3-150400.59.16.1","rpm-ndb-32bit":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"python-rpm","purl":"pkg:rpm/opensuse/python-rpm&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-rpm":"4.14.3-150400.59.16.1","python311-rpm":"4.14.3-150400.59.16.1","rpm":"4.14.3-150400.59.16.1","rpm-32bit":"4.14.3-150400.59.16.1","rpm-build":"4.14.3-150400.59.16.1","rpm-devel":"4.14.3-150400.59.16.1","rpm-imaevmsign":"4.14.3-150400.59.16.1","rpm-ndb":"4.14.3-150400.59.16.1","rpm-ndb-32bit":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"rpm","purl":"pkg:rpm/opensuse/rpm&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-rpm":"4.14.3-150400.59.16.1","python311-rpm":"4.14.3-150400.59.16.1","rpm":"4.14.3-150400.59.16.1","rpm-32bit":"4.14.3-150400.59.16.1","rpm-build":"4.14.3-150400.59.16.1","rpm-devel":"4.14.3-150400.59.16.1","rpm-imaevmsign":"4.14.3-150400.59.16.1","rpm-ndb":"4.14.3-150400.59.16.1","rpm-ndb-32bit":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"rpm-ndb","purl":"pkg:rpm/opensuse/rpm-ndb&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for rpm fixes the following issues:\n\nSecurity fixes:\n- CVE-2021-3521: Fixed missing subkey binding signature checking (bsc#1191175)\n\nOther fixes:\n\n- accept more signature subpackets marked as critical (bsc#1218686)\n- backport limit support for the autopatch macro (bsc#1189495)\n","id":"SUSE-SU-2024:1557-2","modified":"2024-05-30T11:34:08Z","published":"2024-05-30T11:34:08Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2024/suse-su-20241557-2/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1189495"},{"type":"REPORT","url":"https://bugzilla.suse.com/1191175"},{"type":"REPORT","url":"https://bugzilla.suse.com/1218686"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3521"}],"related":["CVE-2021-3521"],"summary":"Security update for rpm","upstream":["CVE-2021-3521"]}