yum-cron/yum-cron.py in yum 3.4.3 and earlier allows remote attackers to bypass package signing
Reporter | Title | Published | Views | Family All 20 |
---|---|---|---|---|
UbuntuCve | CVE-2014-0022 | 26 Jan 201400:00 | – | ubuntucve |
Tenable Nessus | RHEL 5 : yum-updatesd (RHSA-2014:1004) | 5 Aug 201400:00 | – | nessus |
Tenable Nessus | Scientific Linux Security Update : yum-updatesd on SL5.x (noarch) (20140805) | 6 Aug 201400:00 | – | nessus |
Tenable Nessus | CentOS 5 : yum-updatesd (CESA-2014:1004) | 6 Aug 201400:00 | – | nessus |
Tenable Nessus | Amazon Linux AMI : yum (ALAS-2014-315) | 28 Mar 201400:00 | – | nessus |
Tenable Nessus | Oracle Linux 5 : yum- (ELSA-2014-1004) | 6 Aug 201400:00 | – | nessus |
Cent OS | yum security update | 5 Aug 201412:36 | – | centos |
OpenVAS | Oracle: Security Advisory (ELSA-2014-1004) | 6 Oct 201500:00 | – | openvas |
OpenVAS | RedHat Update for yum-updatesd RHSA-2014:1004-01 | 5 Aug 201400:00 | – | openvas |
OpenVAS | CentOS Update for yum-updatesd CESA-2014:1004 centos5 | 6 Aug 201400:00 | – | openvas |
Source | Link |
---|---|
yum | www.yum.baseurl.org/gitweb |
bugzilla | www.bugzilla.redhat.com/show_bug.cgi |
secunia | www.secunia.com/advisories/56637 |
bugzilla | www.bugzilla.redhat.com/show_bug.cgi |
securityfocus | www.securityfocus.com/bid/65119 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo