CVE-2012-6088

Severity

43%

Complexity

86%

Confidentiality

48%

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:P/A:N).

Overview

Type

RPM RPM Package Manager

First reported 12 years ago

2013-01-18 11:48:00

Last updated 7 years ago

2017-08-29 01:32:00

Affected Software

RPM RPM Package Manager 4.10.0

4.10.0

RPM RPM Package Manager 4.10.1

4.10.1

References

http://rpm.org/gitweb?p=rpm.git;a=commitdiff;h=3d74c43

Patch

http://rpm.org/wiki/Releases/4.10.2

Patch, Vendor Advisory

51706

Vendor Advisory

[oss-security] 20130103 Re: CVE Request -- rpm (X >= 4.10 and X < 3d74c43 commit): Signature checking function returned success on (possibly malicious ) rpm packages

57138

USN-1694-1

https://bugzilla.novell.com/show_bug.cgi?id=796375

rpm-security-bypass(80953)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.