CVE-2012-6088

Published: 31 December 2012

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package.

Notes

Author	Note
mdeslaur	only affects rpm >= 4.10.0

Priority

Status

Package	Release	Status
rpm Launchpad, Ubuntu, Debian	hardy	Ignored (end of life)
	lucid	Not vulnerable (4.7.2-1lbuild1)
	oneiric	Not vulnerable (4.9.0-7)
	precise	Not vulnerable (4.9.1.1-1build1)
	quantal	Released (4.10.0-4ubuntu0.1)
	upstream	Released (4.10.2)
	Patches: upstream: http://rpm.org/gitweb?p=rpm.git;a=commitdiff;h=3d74c43e7424bc8bf95f5e031446ecb6b08381e8

References

http://www.openwall.com/lists/oss-security/2013/01/03/9
https://bugzilla.novell.com/show_bug.cgi?id=796375
http://rpm.org/wiki/Releases/4.10.2
https://ubuntu.com/security/notices/USN-1694-1
https://www.cve.org/CVERecord?id=CVE-2012-6088
NVD
Launchpad
Debian

Bugs

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697375
https://bugzilla.novell.com/show_bug.cgi?id=796375

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›