rpm
Page content
- Author: voroskoi
- Vulnerable: 4.4.2-4
- Unaffected: 4.4.2-5siwenna1
A vulnerability has been reported in RPM, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. The vulnerability is caused due to a boundary error when processing certain RPM packages. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into querying a specially crafted RPM package.
- Bug Tracker URL: http://bugs.frugalware.org/task/1426