5 matches found
EUVD-2012-0099
Malware in sbrugna...
NewStart CGSL MAIN 6.06 : rpm Multiple Vulnerabilities (NS-SA-2025-0219)
The remote NewStart CGSL host, running version MAIN 6.06, has rpm packages installed that are affected by multiple vulnerabilities: - Integer overflow in RPM 4.12 and earlier allows remote attackers to execute arbitrary code via a crafted CPIO header in the payload section of an RPM file, which...
RPM before 4.9.1.3 does not properly validate region tags, which allows remote attackers to cause a denial of service
RPM before 4.9.1.3 does not properly validate region tags, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an invalid region tag in a package header to the 1 headerLoad, 2 rpmReadSignature, or 3 headerVerify function...
SUSE CVE-2012-0061
The headerLoad function in lib/header.c in RPM before 4.9.1.3 does not properly validate region tags, which allows user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large region size in a package header...
rpm: insufficient validation of region tags
RPM before 4.9.1.3 does not properly validate region tags, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an invalid region tag in a package header to the 1 headerLoad, 2 rpmReadSignature, or 3 headerVerify function...