Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-2frm-49v8-4jhm

Опубликовано: 17 мая 2022
Источник: github
Github: Не прошло ревью

Описание

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

Ссылки

EPSS

Процентиль: 42%
0.00198
Низкий

CVE ID

CVE-2012-6088

Связанные уязвимости

ubuntu логотип

CVE-2012-6088

ubuntu
около 13 лет назад

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

redhat логотип

CVE-2012-6088

CVSS3: 6.2
redhat
почти 3 года назад

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

nvd логотип

CVE-2012-6088

nvd
около 13 лет назад

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

debian логотип

CVE-2012-6088

debian
около 13 лет назад

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 d ...

EPSS

Процентиль: 42%
0.00198
Низкий

CVE ID

CVE-2012-6088