Rapid7 Vulnerability & Exploit Database

RHSA-2011:1349: rpm security update

Back to Search

RHSA-2011:1349: rpm security update

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
12/24/2011
Created
07/25/2018
Added
12/24/2011
Modified
07/04/2017

Description

The RPM Package Manager (RPM) is a command line driven package managementsystem capable of installing, uninstalling, verifying, querying, andupdating software packages.Multiple flaws were found in the way the RPM library parsed packageheaders. An attacker could create a specially-crafted RPM package that,when queried or installed, would cause rpm to crash or, potentially,execute arbitrary code. (CVE-2011-3378)Note: Although an RPM package can, by design, execute arbitrary code wheninstalled, this issue would allow a specially-crafted RPM package toexecute arbitrary code before its digital signature has been verified.Package downloads from the Red Hat Network remain secure due to certificatechecks performed on the secure connection.All RPM users should upgrade to these updated packages, which contain abackported patch to correct these issues. All running applications linkedagainst the RPM library must be restarted for this update to take effect.

Solution(s)

  • redhat-upgrade-popt
  • redhat-upgrade-rpm
  • redhat-upgrade-rpm-apidocs
  • redhat-upgrade-rpm-build
  • redhat-upgrade-rpm-cron
  • redhat-upgrade-rpm-debuginfo
  • redhat-upgrade-rpm-devel
  • redhat-upgrade-rpm-libs
  • redhat-upgrade-rpm-python

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;