MGASA-2017-0394 Updated rpm package fixes security vulnerabilities

🗓️ 30 Oct 2017 19:23:17Reported by GoogleType

osv

osv🔗 osv.dev👁 6 Views

Updated rpm package addresses vulnerabilities in symbolic links and predictable temporary files.

Reporter	Title	Published	Views	Family All 143
Tenable Nessus	Amazon Linux 2023 : python3-rpm, rpm, rpm-apidocs (ALAS2023-2024-573)	21 Mar 202400:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0030: rpm (ALINUX3-SA-2024:0030)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : rpm (ALSA-2024:0463)	26 Jan 202400:00	–	nessus
Tenable Nessus	AlmaLinux 8 : rpm (ALSA-2024:0647)	2 Feb 202400:00	–	nessus
Tenable Nessus	CentOS 8 : rpm (CESA-2024:0647)	1 Feb 202400:00	–	nessus
Tenable Nessus	CentOS 9 : rpm-4.16.1.3-26.el9	26 Apr 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : rpm (EulerOS-SA-2018-1353)	6 Nov 201800:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP5 : rpm (EulerOS-SA-2019-1011)	8 Jan 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP3 : rpm (EulerOS-SA-2019-1043)	15 Feb 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.5.4 : rpm (EulerOS-SA-2019-1210)	9 Apr 201900:00	–	nessus

Source	Link
advisories	www.advisories.mageia.org/MGASA-2017-0394.html
bugs	www.bugs.mageia.org/show_bug.cgi
rpm	www.rpm.org/wiki/Releases/4.13.0.2
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

16 Apr 2026 06:25Current

8High risk

Vulners AI Score8

CVSS 27.2

CVSS 37.3 - 7.8

EPSS0.00054

security vulnerabilities symbolic link issues arbitrary directory access privilege escalation denial of service