Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-2197HistoryJun 08, 2010 - 6:30 p.m.
CVE-2010-2197
2010-06-0818:30:10
Debian Security Bug Tracker
security-tracker.debian.org
7
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
66.2%
rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote attackers to remove home directories via vectors involving a ;~ (semicolon tilde) sequence in a Name tag.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | rpm | < 4.8.1-1 | rpm_4.8.1-1_all.deb |
| Debian | 11 | all | rpm | < 4.8.1-1 | rpm_4.8.1-1_all.deb |
| Debian | 10 | all | rpm | < 4.8.1-1 | rpm_4.8.1-1_all.deb |
| Debian | 999 | all | rpm | < 4.8.1-1 | rpm_4.8.1-1_all.deb |
| Debian | 13 | all | rpm | < 4.8.1-1 | rpm_4.8.1-1_all.deb |
Related
nvd
nvd
CVE-2010-2197
2010-06-08 18:30:10
prion
prion
Design/Logic Flaw
2010-06-08 18:30:00
cvelist
cvelist
CVE-2010-2197
2010-06-08 18:00:00
cve
cve
CVE-2010-2197
2010-06-08 18:30:10
ubuntucve
ubuntucve
CVE-2010-2197
2010-06-08 00:00:00
gentoo
gentoo
RPM: Multiple vulnerabilities
2012-06-24 00:00:00
nessus
nessus
GLSA-201206-26 : RPM: Multiple vulnerabilities
2012-06-25 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201206-26 (RPM)
2012-08-10 00:00:00
Gentoo Security Advisory GLSA 201206-26 (RPM)
2012-08-10 00:00:00
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
66.2%
Related for DEBIANCVE:CVE-2010-2197