Vulnerabilities

CVE-2012-0815

by Fred · 04/06/2012

The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a negative value in a region offset of a package header, which is not properly handled in a numeric range comparison.

Date published : 2012-06-04

http://www.securityfocus.com/bid/52865

http://rpm.org/gitweb?p=rpm.git;a=commitdiff;h=472e569562d4c90d7a298080e0052856aa7fa86b

Similar

Tags: Cybersecurity Alert