type: security
subject: Updated libsolv packages fix security vulnerability
CVE:
 - CVE-2018-2052
 - CVE-2018-2053
 - CVE-2018-2054
src:
  6:
   core:
     - libsolv-0.6.30-1.1.mga6
description: |
  It was discovered that libsolv incorrectly handled certain malformed
  input. If a user or automated system were tricked into opening a specially
  crafted file, applications that rely on libsolv could be made to crash,
  resulting in a denial of service (CVE-2018-2053[2-4]).
references:
 - https://bugs.mageia.org/show_bug.cgi?id=24563
 - https://usn.ubuntu.com/3916-1/
ID: MGASA-2019-0154