CVE-2012-0061 — Improper Input Validation in RPM

CWE-20 — Improper Input Validation CWE-228 — Improper Handling of Syntactically Invalid Structure CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-863 — Incorrect Authorization12 documents8 sources

Severity

6.8MEDIUMNVD

EPSS

4.9%

top 10.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

RPM Debian RPM

Timeline

PublishedJun 4

Latest updateMay 4

Description

The headerLoad function in lib/header.c in RPM before 4.9.1.3 does not properly validate region tags, which allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large region size in a package header.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages3 packages

▶debiandebian/rpm< rpm 4.9.1.3-1 (bookworm)

▶Debianrpm/rpm< 4.9.1.3-1+3

▶NVDrpm/rpm4.9.1.2+97

🔴Vulnerability Details

GHSA

GHSA-v3v4-hffr-vr89: The headerLoad function in lib/header↗2022-05-04

▶

OSV

CVE-2012-0061: The headerLoad function in lib/header↗2012-06-04

▶

CVEList

CVE-2012-0061: The headerLoad function in lib/header↗2012-06-04

▶

📋Vendor Advisories

Ubuntu

RPM vulnerabilities↗2013-01-17

▶

Red Hat

rpm: improper validation of header contents total size in headerLoad()↗2012-04-03

▶

Red Hat

kernel: proc: /proc/<pid>/mem mem_write insufficient permission checking↗2012-01-18

▶

Debian

CVE-2012-0061: rpm - The headerLoad function in lib/header.c in RPM before 4.9.1.3 does not properly ...↗2012

▶

💬Community

Bugzilla

CVE-2012-5471 moodle: Various security issues fixed in upstream 2.3.3, 2.2.6 and 2.1.9 versions (MSA-12-0057, MSA-12-0058, MSA-12-0059, MSA-12-0060, MSA-12-0061, MSA-12-0062, MSA-12-0063) [fedora-all]↗2012-11-19

▶

Bugzilla

CVE-2012-0815 CVE-2012-0060 CVE-2012-0061 rpm various flaws [fedora-all]↗2012-04-03

▶

Bugzilla

CVE-2012-0061 rpm: improper validation of header contents total size in headerLoad()↗2012-02-29

▶