8 matches found
EUVD-2010-2214
Malware in sbrugna...
Alibaba Cloud Linux 3 : 0030: rpm (ALINUX3-SA-2024:0030)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0030 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-35937: A race condition...
Alibaba Cloud Linux 3 : 0046: rpm (ALINUX3-SA-2021:0046)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0046 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-20271: A flaw was found in RPM's...
K000149873: Multiple rpm vulnerabilities
Security Advisory Description CVE-2014-8118 Integer overflow in RPM 4.12 and earlier allows remote attackers to execute arbitrary code via a crafted CPIO header in the payload section of an RPM file, which triggers a stack-based buffer overflow. CVE-2021-35939 It was found that the fix for...
SUSE-SU-2021:3444-1 Security update for rpm
This update for rpm fixes the following issues: Security issues fixed: - CVE-2021-3421, CVE-2021-20271, CVE-2021-20266: Multiple header check improvements bsc1183543, bsc1183545, bsc1183632 - PGP hardening changes bsc1185299 - Fixed potential access of freed mem in ndb's glue code bsc1179416...
SUSE-SU-2021:2682-1 Security update for rpm
This update for rpm fixes the following issues: - Changed default package verification level to 'none' to be compatible to rpm-4.14.1 - Made illegal obsoletes a warning - Fixed a potential access of freed mem in ndb's glue code bsc1179416 - Added support for enforcing signature policy and payload...
SUSE-SU-2018:3884-2 Security update for rpm
This update for rpm fixes the following issues: These security issues were fixed: - CVE-2017-7500: rpm did not properly handle RPM installations when a destination path was a symbolic link to a directory, possibly changing ownership and permissions of an arbitrary directory, and RPM files being...
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS : rpm vulnerabilities (USN-1695-1)
It was discovered that RPM incorrectly handled certain package headers. If a user or automated system were tricked into installing a specially crafted RPM package, an attacker could cause RPM to crash, resulting in a denial of service, or possibly execute arbitrary code. Note that Tenable Network...