Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3378

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-3378
Last Modified 06 Feb 2013 11:47:13
Published 24 Dec 2011 02:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-3378

Summary

RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a package is queried or installed, related to (1) the regionSwab function, (2) the headerLoad function, and (3) multiple functions in rpmio/rpmpgp.c.

Vulnerable Systems

Application

  • Rpm 4.4.2

  • Rpm 4.4.2.

  • Rpm 4.4.2.1

  • Rpm 4.4.2.2

  • Rpm 4.4.2.3

  • Rpm 4.6.0

  • Rpm 4.6.1

  • Rpm 4.7.0

  • Rpm 4.7.1

  • Rpm 4.7.2

  • Rpm 4.8.0

  • Rpm 4.9.1.1


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=741612

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=741606

REDHAT - RHSA-2011:1349

MLIST - [oss-security] 20110927 rpm/librpm/rpm-python memory corruption pre-verification

MANDRIVA - MDVSA-2011:143

CONFIRM - http://rpm.org/wiki/Releases/4.9.1.2#Security

CONFIRM - http://rpm.org/gitweb?p=rpm.git;a=commitdiff;h=a48f0e20cbe2ababc88b2fc52fb7a281d6fc1656

CONFIRM - http://rpm.org/gitweb?p=rpm.git;a=commitdiff;h=11a7e5d95a8ca8c7d4eaff179094afd8bb74fc3f

SUSE - SUSE-SU-2011:1140

SUSE - openSUSE-SU-2011:1203

UBUNTU - USN-1695-1

Related Patches

Novell SUSE 2011:5256 popt security update for SLE 11 SP1 i586

Novell SUSE 2011:7792 popt security update for SLE 10 SP4 i586


Last Updated: 27 May 2016 10:57:16