| Max CVSS | 9.3 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2011-3378 | 9.3 |
RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a pa
|
13-02-2023 - 04:32 | 24-12-2011 - 19:55 | |
| CVE-2012-0060 | 6.8 |
RPM before 4.9.1.3 does not properly validate region tags, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an invalid region tag in a package header to the (1) headerLoad, (2) rpmReadSignatur
|
18-01-2018 - 02:29 | 04-06-2012 - 20:55 | |
| CVE-2012-0061 | 6.8 |
The headerLoad function in lib/header.c in RPM before 4.9.1.3 does not properly validate region tags, which allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large region size in a pa
|
18-01-2018 - 02:29 | 04-06-2012 - 20:55 | |
| CVE-2012-0815 | 6.8 |
The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a negative value in a region offset of a package header, which is not properly ha
|
18-01-2018 - 02:29 | 04-06-2012 - 20:55 |