CVE-2010-2197 — RPM vulnerability

CWE-2647 documents6 sources

Severity

5.8MEDIUMNVD

EPSS

0.4%

top 37.43%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

RPM Debian RPM

Timeline

PublishedJun 8

Latest updateMay 17

Description

rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote attackers to remove home directories via vectors involving a ;~ (semicolon tilde) sequence in a Name tag.

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages3 packages

▶debiandebian/rpm< rpm 4.8.1-1 (bookworm)

▶Debianrpm/rpm< 4.8.1-1+3

▶NVDrpm/rpm4.8.0+92

🔴Vulnerability Details

GHSA

GHSA-6gj2-w23f-chf3: rpmbuild in RPM 4↗2022-05-17

▶

OSV

CVE-2010-2197: rpmbuild in RPM 4↗2010-06-08

▶

📋Vendor Advisories

Red Hat

rpm: rpmbuild does not properly parse syntax of spec files↗2010-06-08

▶

Debian

CVE-2010-2197: rpm - rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec fil...↗2010

▶

💬Community

Bugzilla

CVE-2010-2197 rpm: rpmbuild does not properly parse syntax of spec files↗2010-06-12

▶

Bugzilla

CVE-2010-2199 rpm: fails to drop POSIX ACLs on package upgrade or removal↗2010-06-08

▶