4 matches found
CVE-2010-2197
rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote attackers to remove home directories via vectors involving a ; semicolon tilde sequence in a Name tag...
CVE-2010-2197
CVE-2010-2197 affects the Red Hat RPM package manager where RPMs with a crafted spec file trigger a parsing flaw in the Name tag (semicolon-tilde sequence), enabling local privilege escalation or potentially arbitrary code execution via a specially crafted package. The Gentoo GLSA and related adv...
CVE-2010-2197
rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote attackers to remove home directories via vectors involving a ; semicolon tilde sequence in a Name tag...
CVE-2010-2197
rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote attackers to remove home directories via vectors involving a ; semicolon tilde sequence in a Name tag...