CVE-2011-3378 - RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of servi

CVE-2011-3378

Summary

RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a package is queried or installed, related to (1) the regionSwab function, (2) the headerLoad function, and (3) multiple functions in rpmio/rpmpgp.c.

References

Vulnerable Configurations

cpe:2.3:a:rpm:rpm:4.4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.8.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.8.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.2\/a:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.2\/a:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:1.4.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.9:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.9:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.10:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.10:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.11:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.0.11:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.3.10:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.3.10:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.3.11:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.3.11:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.10:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.10:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.11:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.2.11:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.8:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.8:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.9:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.3.9:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.8:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.8:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.9:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.9:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.11:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.11:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.12:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.4.12:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.5.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.3.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.3.3:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.1:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.1:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.1:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.1:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.1:rc2:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.1:rc2:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.1:rc3:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.1:rc3:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.2:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.2:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.2:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.2:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.2:rc2:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.2:rc2:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.3:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.3:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.3:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.3:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.5.90:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.5.90:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:rc2:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:rc2:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:rc3:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:rc3:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:rc4:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.6.0:rc4:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.0:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.0:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.0:beta1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.0:beta1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.8.0:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.8.0:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.8.0:beta1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.8.0:beta1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.8.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.8.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:-:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:alpha:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:alpha:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:beta1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:beta1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.0:rc1:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.1.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.9.1.1:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.:*:*:*:*:*:*:*
cpe:2.3:a:rpm:rpm:4.4.2.:*:*:*:*:*:*:*

CVSS

Base:	9.3 (as of 13-02-2023 - 04:32)
Impact:
Exploitability:

CWE

CWE-94

CAPEC

Code Injection
An adversary exploits a weakness in input validation on the target to inject new code into that which is currently executing. This differs from code inclusion in that code inclusion involves the addition or replacement of a reference to a code file, which is subsequently loaded by the target and used as part of the code of some application.
Leverage Executable Code in Non-Executable Files
An attack of this type exploits a system's trust in configuration and resource files. When the executable loads the resource (such as an image file or configuration file) the attacker has modified the file to either execute malicious code directly or manipulate the target process (e.g. application server) to execute based on the malicious configuration parameters. Since systems are increasingly interrelated mashing up resources from local and remote sources the possibility of this attack occurring is high.
Manipulating User-Controlled Variables
This attack targets user controlled variables (DEBUG=1, PHP Globals, and So Forth). An attacker can override environment variables leveraging user-supplied, untrusted query variables directly used on the application server without any data sanitization. In extreme cases, the attacker can change variables controlling the business logic of the application. For instance, in languages like PHP, a number of poorly set default configurations may allow the user to override variables.

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:C/I:C/A:C

redhat via4

advisories

bugzilla

id	741606
title	CVE-2011-3378 rpm: crashes and overflows on malformed header

oval

comment Red Hat Enterprise Linux must be installed
oval oval:com.redhat.rhba:tst:20070304026

AND

comment Red Hat Enterprise Linux 4 is installed
oval oval:com.redhat.rhba:tst:20070304025

AND
comment popt is earlier than 0:1.9.1-35_nonptl.el4
oval oval:com.redhat.rhsa:tst:20111349001
comment popt is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20100678002
AND
comment rpm is earlier than 0:4.3.3-35_nonptl.el4
oval oval:com.redhat.rhsa:tst:20111349003
comment rpm is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20100678004
AND
comment rpm-build is earlier than 0:4.3.3-35_nonptl.el4
oval oval:com.redhat.rhsa:tst:20111349005
comment rpm-build is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20100678006
AND
comment rpm-devel is earlier than 0:4.3.3-35_nonptl.el4
oval oval:com.redhat.rhsa:tst:20111349007
comment rpm-devel is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20100678008
AND
comment rpm-libs is earlier than 0:4.3.3-35_nonptl.el4
oval oval:com.redhat.rhsa:tst:20111349009
comment rpm-libs is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20100678010
AND
comment rpm-python is earlier than 0:4.3.3-35_nonptl.el4
oval oval:com.redhat.rhsa:tst:20111349011
comment rpm-python is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20100678012

AND

comment Red Hat Enterprise Linux 5 is installed
oval oval:com.redhat.rhba:tst:20070331005

AND
comment popt is earlier than 0:1.10.2.3-22.el5_6.2
oval oval:com.redhat.rhsa:tst:20111349014
comment popt is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679002
AND
comment rpm is earlier than 0:4.4.2.3-22.el5_6.2
oval oval:com.redhat.rhsa:tst:20111349016
comment rpm is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679004

AND

comment rpm-apidocs is earlier than 0:4.4.2.3-22.el5_6.2
oval oval:com.redhat.rhsa:tst:20111349018
comment rpm-apidocs is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679006

AND
comment rpm-build is earlier than 0:4.4.2.3-22.el5_6.2
oval oval:com.redhat.rhsa:tst:20111349020
comment rpm-build is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679008
AND
comment rpm-devel is earlier than 0:4.4.2.3-22.el5_6.2
oval oval:com.redhat.rhsa:tst:20111349022
comment rpm-devel is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679010
AND
comment rpm-libs is earlier than 0:4.4.2.3-22.el5_6.2
oval oval:com.redhat.rhsa:tst:20111349024
comment rpm-libs is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679012
AND
comment rpm-python is earlier than 0:4.4.2.3-22.el5_6.2
oval oval:com.redhat.rhsa:tst:20111349026
comment rpm-python is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679014

AND

comment Red Hat Enterprise Linux 6 is installed
oval oval:com.redhat.rhba:tst:20111656003

AND
comment rpm is earlier than 0:4.8.0-16.el6_1.1
oval oval:com.redhat.rhsa:tst:20111349029
comment rpm is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhsa:tst:20111349030
AND
comment rpm-apidocs is earlier than 0:4.8.0-16.el6_1.1
oval oval:com.redhat.rhsa:tst:20111349031
comment rpm-apidocs is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhsa:tst:20111349032
AND
comment rpm-build is earlier than 0:4.8.0-16.el6_1.1
oval oval:com.redhat.rhsa:tst:20111349033
comment rpm-build is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhsa:tst:20111349034
AND
comment rpm-cron is earlier than 0:4.8.0-16.el6_1.1
oval oval:com.redhat.rhsa:tst:20111349035
comment rpm-cron is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhsa:tst:20111349036
AND
comment rpm-devel is earlier than 0:4.8.0-16.el6_1.1
oval oval:com.redhat.rhsa:tst:20111349037
comment rpm-devel is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhsa:tst:20111349038
AND
comment rpm-libs is earlier than 0:4.8.0-16.el6_1.1
oval oval:com.redhat.rhsa:tst:20111349039
comment rpm-libs is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhsa:tst:20111349040
AND
comment rpm-python is earlier than 0:4.8.0-16.el6_1.1
oval oval:com.redhat.rhsa:tst:20111349041
comment rpm-python is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhsa:tst:20111349042

AND

comment Red Hat Enterprise Linux 5 is installed
oval oval:com.redhat.rhba:tst:20070331005

AND
comment popt is earlier than 0:1.10.2.3-22.el5_7.2
oval oval:com.redhat.rhsa:tst:20111349044
comment popt is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679002
AND
comment rpm is earlier than 0:4.4.2.3-22.el5_7.2
oval oval:com.redhat.rhsa:tst:20111349045
comment rpm is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679004

AND

comment rpm-apidocs is earlier than 0:4.4.2.3-22.el5_7.2
oval oval:com.redhat.rhsa:tst:20111349046
comment rpm-apidocs is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679006

AND
comment rpm-build is earlier than 0:4.4.2.3-22.el5_7.2
oval oval:com.redhat.rhsa:tst:20111349047
comment rpm-build is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679008
AND
comment rpm-devel is earlier than 0:4.4.2.3-22.el5_7.2
oval oval:com.redhat.rhsa:tst:20111349048
comment rpm-devel is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679010
AND
comment rpm-libs is earlier than 0:4.4.2.3-22.el5_7.2
oval oval:com.redhat.rhsa:tst:20111349049
comment rpm-libs is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679012
AND
comment rpm-python is earlier than 0:4.4.2.3-22.el5_7.2
oval oval:com.redhat.rhsa:tst:20111349050
comment rpm-python is signed with Red Hat redhatrelease key
oval oval:com.redhat.rhsa:tst:20100679014

rhsa

id	RHSA-2011:1349
released	2011-10-03
severity	Important
title	RHSA-2011:1349: rpm security update (Important)

rpms

popt-0:1.10.2.3-22.el5_6.2
popt-0:1.10.2.3-22.el5_7.2
popt-0:1.10.2.3-9.el5_3.2
popt-0:1.8.2-35_nonptl
popt-0:1.9.1-35_nonptl.el4
rpm-0:4.2.3-35_nonptl
rpm-0:4.3.3-35_nonptl.el4
rpm-0:4.4.2.3-22.el5_6.2
rpm-0:4.4.2.3-22.el5_7.2
rpm-0:4.4.2.3-9.el5_3.2
rpm-0:4.8.0-12.el6_0.1
rpm-0:4.8.0-16.el6_1.1
rpm-apidocs-0:4.4.2.3-22.el5_6.2
rpm-apidocs-0:4.4.2.3-22.el5_7.2
rpm-apidocs-0:4.4.2.3-9.el5_3.2
rpm-apidocs-0:4.8.0-12.el6_0.1
rpm-apidocs-0:4.8.0-16.el6_1.1
rpm-build-0:4.2.3-35_nonptl
rpm-build-0:4.3.3-35_nonptl.el4
rpm-build-0:4.4.2.3-22.el5_6.2
rpm-build-0:4.4.2.3-22.el5_7.2
rpm-build-0:4.4.2.3-9.el5_3.2
rpm-build-0:4.8.0-12.el6_0.1
rpm-build-0:4.8.0-16.el6_1.1
rpm-cron-0:4.8.0-12.el6_0.1
rpm-cron-0:4.8.0-16.el6_1.1
rpm-debuginfo-0:4.2.3-35_nonptl
rpm-debuginfo-0:4.3.3-35_nonptl.el4
rpm-debuginfo-0:4.4.2.3-22.el5_6.2
rpm-debuginfo-0:4.4.2.3-22.el5_7.2
rpm-debuginfo-0:4.4.2.3-9.el5_3.2
rpm-debuginfo-0:4.8.0-12.el6_0.1
rpm-debuginfo-0:4.8.0-16.el6_1.1
rpm-devel-0:4.2.3-35_nonptl
rpm-devel-0:4.3.3-35_nonptl.el4
rpm-devel-0:4.4.2.3-22.el5_6.2
rpm-devel-0:4.4.2.3-22.el5_7.2
rpm-devel-0:4.4.2.3-9.el5_3.2
rpm-devel-0:4.8.0-12.el6_0.1
rpm-devel-0:4.8.0-16.el6_1.1
rpm-libs-0:4.2.3-35_nonptl
rpm-libs-0:4.3.3-35_nonptl.el4
rpm-libs-0:4.4.2.3-22.el5_6.2
rpm-libs-0:4.4.2.3-22.el5_7.2
rpm-libs-0:4.4.2.3-9.el5_3.2
rpm-libs-0:4.8.0-12.el6_0.1
rpm-libs-0:4.8.0-16.el6_1.1
rpm-python-0:4.2.3-35_nonptl
rpm-python-0:4.3.3-35_nonptl.el4
rpm-python-0:4.4.2.3-22.el5_6.2
rpm-python-0:4.4.2.3-22.el5_7.2
rpm-python-0:4.4.2.3-9.el5_3.2
rpm-python-0:4.8.0-12.el6_0.1
rpm-python-0:4.8.0-16.el6_1.1

refmap via4

confirm	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691 http://rpm.org/gitweb?p=rpm.git;a=commitdiff;h=11a7e5d95a8ca8c7d4eaff179094afd8bb74fc3f http://rpm.org/gitweb?p=rpm.git;a=commitdiff;h=a48f0e20cbe2ababc88b2fc52fb7a281d6fc1656 http://rpm.org/wiki/Releases/4.9.1.2#Security https://bugzilla.redhat.com/show_bug.cgi?id=741606 https://bugzilla.redhat.com/show_bug.cgi?id=741612
mandriva	MDVSA-2011:143
mlist	[oss-security] 20110927 rpm/librpm/rpm-python memory corruption pre-verification
suse	SUSE-SU-2011:1140 openSUSE-SU-2011:1203
ubuntu	USN-1695-1

Last major update

13-02-2023 - 04:32

Published

24-12-2011 - 19:55

Last modified

13-02-2023 - 04:32