CVE-2012-0815 (retired)

Priority
Description
The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows
remote attackers to cause a denial of service (crash) and possibly execute
arbitrary code via a negative value in a region offset of a package header,
which is not properly handled in a numeric range comparison.
Assigned-to
mdeslaur
More Information

Updated: 2019-03-26 12:00:41 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)