CVE-2017-9269: In libzypp before August 2018 GPG keys attached to YUM repositories we ...

Severity: Critical

CVSS Score: 9.8

In libzypp before August 2018 GPG keys attached to YUM repositories were not correctly pinned, allowing malicious repository mirrors to silently downgrade to unsigned repositories with potential malicious content.