The security vulnerability tagged with zlib 1.2.13 is in Minizip which is not officially supported from zlib itself. It's part of contrib code. Minizip is not shipped with Toolbox zlib rpm. Anyway there are plans to update zlib soon in Toolbox.
About rpm-python, can you be more specific ? what is the version you are seeing ?
------------------------------
Ayappan P
------------------------------
Original Message:
Sent: Thu September 18, 2025 05:07 AM
From: Will Lam
Subject: AIX OS and Software Update Inquiry
Hi All,
We updated our AIX OS to 7300-03-01-2520 and refreshed software using the source from AIX Toolbox for Open Source Software to address security vulnerabilities. However, two unsupported software packages remain:
• Red Hat rpm-python 3.0
• Mark Adler zlib 1.2.13
Is there an IBM roadmap for updating these on AIX, or does IBM provide backport protection if new security CVEs arise?