Bug | buster | bullseye | bookworm | sid | Description |
---|
CVE-2021-35939 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was inco ... |
CVE-2021-35938 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | A symbolic link issue was found in rpm. It occurs when rpm sets the de ... |
CVE-2021-35937 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | A race condition vulnerability was found in rpm. A local unprivileged ... |
CVE-2021-20271 | vulnerable (no DSA) | fixed | fixed | fixed | A flaw was found in RPM's signature check functionality when reading a ... |
CVE-2021-20266 | vulnerable (no DSA) | fixed | fixed | fixed | A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw all ... |
CVE-2021-3521 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | There is a flaw in RPM's signature functionality. OpenPGP subkeys are ... |
CVE-2021-3421 | vulnerable (no DSA) | fixed | fixed | fixed | A flaw was found in the RPM package in the read functionality. This fl ... |
Bug | Description |
---|
CVE-2014-8118 | CVE-2014-8118 rpm: integer overflow and stack overflow in CPIO header ... |
CVE-2013-6435 | It was found that RPM wrote file contents to the target installation d ... |
CVE-2012-6088 | The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 d ... |
CVE-2012-0815 | The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 al ... |
CVE-2012-0061 | The headerLoad function in lib/header.c in RPM before 4.9.1.3 does not ... |
CVE-2012-0060 | RPM before 4.9.1.3 does not properly validate region tags, which allow ... |
CVE-2011-3378 | CVE-2011-3378 rpm: crashes and overflows on malformed header ... |
CVE-2010-2197 | rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax o ... |
CVE-2010-2059 | CVE-2010-2059 rpm: fails to drop SUID/SGID bits on package upgrade ... |
CVE-2006-5466 | CVE-2006-5466 RPM Crash after listing contents of non-installed packag ... |
CVE-2005-4889 | lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of ... |
CVE-2005-2096 | CVE-2005-2096 zlib DoS ... |