3 matches found
CVE-2012-6088
The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package...
CVE-2012-6088
CVE-2012-6088 affects RPM 4.10.x prior to 4.10.2. The rpmpkgRead function in lib/package.c may not return an error when encountering an unparseable signature, enabling remote attackers to bypass RPM signature checks with a crafted package. Impact is a security bypass of signature verification; af...
KLA10303 SB vulnerability in RPM
Improper error handling was found in RPM. By exploiting this vulnerability malicious users can bypass signature checks. This vulnerability can be exploited remotely via a specially designed packet. Original advisories - Related products RPM-Remote-Print-Manager CVE list CVE-2012-6088 warning...