CVE-2010-2198 — RPM vulnerability

8 documents7 sources

Severity

7.2HIGHNVD

EPSS

0.0%

top 85.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

RPM Debian RPM

Timeline

PublishedJun 8

Latest updateMay 17

Description

lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade or deletion of the file in an RPM package removal, which might allow local users to gain privileges or bypass intended access restrictions by creating a hard link to a vulnerable file that has (1) POSIX file capabilities or (2) SELinux context information, a related issue to CVE-2010-2059.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDrpm/rpm4.8.0+92

▶debiandebian/rpm

🔴Vulnerability Details

GHSA

GHSA-fw46-vp2w-pvxq: lib/fsm↗2022-05-17

▶

CVEList

CVE-2010-2198: lib/fsm↗2010-06-08

▶

OSV

CVE-2010-2198: lib/fsm↗2010-06-08

▶

📋Vendor Advisories

Red Hat

rpm: fails to drop POSIX file capabilities on package upgrade or removal↗2010-06-01

▶

Debian

CVE-2010-2198: rpm - lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadata of an ex...↗2010

▶

💬Community

Bugzilla

CVE-2010-2198 rpm: fails to drop POSIX file capabilities on package upgrade or removal↗2010-06-08

▶

Bugzilla

CVE-2010-2059 rpm: fails to drop SUID/SGID bits on package upgrade↗2010-06-02

▶