Lucene search
+L

11 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.5 views

NewStart CGSL MAIN 6.06 (SP) : rpm Multiple Vulnerabilities (NS-SA-2026-0012)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has rpm packages installed that are affected by multiple vulnerabilities: - Integer overflow in RPM 4.12 and earlier allows remote attackers to execute arbitrary code via a crafted CPIO header in the payload section of an RPM file, whic...

10CVSS6.5AI score0.07669EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2021-26749

Malware in sbrugna...

5.5CVSS6.5AI score0.00701EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:49 a.m.4 views

SUSE CVE-2021-3421

A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. This...

5.3CVSS6.5AI score0.00701EPSS
Exploits0References50
OpenVAS
OpenVAS
added 2023/01/31 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for rpm (EulerOS-SA-2023-1306)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.6AI score0.00827EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/01/30 12:0 a.m.38 views

EulerOS Virtualization 3.0.2.2 : rpm (EulerOS-SA-2023-1306)

According to the versions of the rpm packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a...

7CVSS6.6AI score0.00827EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/10/26 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for rpm (EulerOS-SA-2021-2613)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.5AI score0.00827EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/10/25 12:0 a.m.40 views

EulerOS 2.0 SP3 : rpm (EulerOS-SA-2021-2613)

According to the versions of the rpm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to...

7CVSS6.7AI score0.00827EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/09/07 12:0 a.m.29 views

EulerOS 2.0 SP5 : rpm (EulerOS-SA-2021-2346)

According to the versions of the rpm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to...

7CVSS6.7AI score0.00827EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/08/09 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for rpm (EulerOS-SA-2021-2254)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.4AI score0.01706EPSS
Exploits0References2
Prion
Prion
added 2021/05/19 2:15 p.m.29 views

Design/Logic Flaw

A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. This...

4.3CVSS5.6AI score0.00701EPSS
Exploits0References5Affected Software3
RedHat Linux
RedHat Linux
added 2010/09/07 2:32 p.m.5 views

rpm: fails to drop SUID/SGID bits on package upgrade

lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable 1...

7.2CVSS7.1AI score0.00399EPSS
Exploits0References4
Rows per page
Query Builder