This update for rpm fixes the following issues: - Fixed PGP parsing bugs . - Fixed various format handling bugs . - CVE-2021-3421: Fixed vulnerability where unsigned headers could be injected into the rpm database . - CVE-2021-20271: Fixed vulnerability where a corrupted rpm could corrupt the rpm database . - CVE-2021-20266: Fixed missing bounds check in hdrblobInit . Bugfixes: - Fixed deadlock when multiple rpm processes tried to acquire the database lock .