CVE-2011-3378

Exploit

EPSS 8.23%
Published 24.12.2011 19:55:01
Last modified 11.04.2025 00:51:21
Source secalert@redhat.com
Teams watchlist Login
Open Login

RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a package is queried or installed, related to (1) the regionSwab function, (2) the headerLoad function, and (3) multiple functions in rpmio/rpmpgp.c.

Affected products Warnungen 0 Metrics 2 CWE 1 References 15

Data is provided by the National Vulnerability Database (NVD)

Rpm ≫ Rpm Version <= 4.9.1.1

Rpm ≫ Rpm Version4.4.2

Rpm ≫ Rpm Version4.4.2.

Rpm ≫ Rpm Version4.4.2.1

Rpm ≫ Rpm Version4.4.2.2

Rpm ≫ Rpm Version4.4.2.3

Rpm ≫ Rpm Version4.6.0

Rpm ≫ Rpm Version4.6.1

Rpm ≫ Rpm Version4.7.0

Rpm ≫ Rpm Version4.7.1

Rpm ≫ Rpm Version4.7.2

Rpm ≫ Rpm Version4.8.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	8.23%	0.918

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691

http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00002.html

http://rpm.org/gitweb?p=rpm.git%3Ba=commitdiff%3Bh=11a7e5d95a8ca8c7d4eaff179094afd8bb74fc3f

http://rpm.org/gitweb?p=rpm.git%3Ba=commitdiff%3Bh=a48f0e20cbe2ababc88b2fc52fb7a281d6fc1656

http://rpm.org/wiki/Releases/4.9.1.2#Security

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2011:143

http://www.openwall.com/lists/oss-security/2011/09/27/3

http://www.redhat.com/support/errata/RHSA-2011-1349.html

Vendor Advisory

http://www.ubuntu.com/usn/USN-1695-1