{"affected":[{"ecosystem_specific":{"binaries":[{"python3-rpm":"4.14.3-150400.59.16.1","rpm":"4.14.3-150400.59.16.1","rpm-ndb":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.5","name":"python-rpm","purl":"pkg:rpm/suse/python-rpm&distro=SUSE%20Linux%20Enterprise%20Micro%205.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-rpm":"4.14.3-150400.59.16.1","rpm":"4.14.3-150400.59.16.1","rpm-ndb":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.5","name":"rpm","purl":"pkg:rpm/suse/rpm&distro=SUSE%20Linux%20Enterprise%20Micro%205.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-rpm":"4.14.3-150400.59.16.1","rpm":"4.14.3-150400.59.16.1","rpm-ndb":"4.14.3-150400.59.16.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.5","name":"rpm-ndb","purl":"pkg:rpm/suse/rpm-ndb&distro=SUSE%20Linux%20Enterprise%20Micro%205.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.14.3-150400.59.16.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for rpm fixes the following issues:\n\nSecurity fixes:\n- CVE-2021-3521: Fixed missing subkey binding signature checking (bsc#1191175)\n\nOther fixes:\n\n- accept more signature subpackets marked as critical (bsc#1218686)\n- backport limit support for the autopatch macro (bsc#1189495)\n","id":"SUSE-SU-2024:1557-3","modified":"2024-05-08T09:43:05Z","published":"2024-05-08T09:43:05Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2024/suse-su-20241557-3/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1189495"},{"type":"REPORT","url":"https://bugzilla.suse.com/1191175"},{"type":"REPORT","url":"https://bugzilla.suse.com/1218686"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3521"}],"related":["CVE-2021-3521"],"summary":"Security update for rpm","upstream":["CVE-2021-3521"]}