Описание
ELSA-2014-1004: yum-updatesd security update (IMPORTANT)
[1:0.9-6]
- updatesd: prevent installing unsigned packages.
- Resolves: rhbz#1125185
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
yum-updatesd
0.9-6.el5_10
Oracle Linux x86_64
yum-updatesd
0.9-6.el5_10
Oracle Linux i386
yum-updatesd
0.9-6.el5_10
Связанные CVE
Связанные уязвимости
The installUpdates function in yum-cron/yum-cron.py in yum 3.4.3 and earlier does not properly check the return value of the sigCheckPkg function, which allows remote attackers to bypass the RMP package signing restriction via an unsigned package.
The installUpdates function in yum-cron/yum-cron.py in yum 3.4.3 and earlier does not properly check the return value of the sigCheckPkg function, which allows remote attackers to bypass the RMP package signing restriction via an unsigned package.
The installUpdates function in yum-cron/yum-cron.py in yum 3.4.3 and earlier does not properly check the return value of the sigCheckPkg function, which allows remote attackers to bypass the RMP package signing restriction via an unsigned package.
The installUpdates function in yum-cron/yum-cron.py in yum 3.4.3 and earlier does not properly check the return value of the sigCheckPkg function, which allows remote attackers to bypass the RMP package signing restriction via an unsigned package.
Уязвимость операционной системы CentOS, позволяющая удаленному злоумышленнику нарушить целостность защищаемой информации