|Category:||SuSE Local Security Checks|
|Title:||SUSE: Security Advisory (SUSE-SU-2012:0880-1)|
|Summary:||The remote host is missing an update for the 'RPM' package(s) announced via the SUSE-SU-2012:0880-1 advisory.|
The remote host is missing an update for the 'RPM' package(s) announced via the SUSE-SU-2012:0880-1 advisory.
Multiple security vulnerabilities were reported in RPM which could have been exploited via specially crafted RPM files to cause a denial of service (application crash) or potentially allow attackers to execute arbitrary code.
Additionally, a non-security issue was fixed that could cause a division by zero in cycles calculation under rare circumstances.
Security Issue references:
'RPM' package(s) on SUSE Linux Enterprise Server 10 SP4, SUSE Linux Enterprise Desktop 10 SP4, SLE SDK 10 SP4
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2012-0060|
BugTraq ID: 52865
RedHat Security Advisories: RHSA-2012:0451
RedHat Security Advisories: RHSA-2012:0531
SuSE Security Announcement: openSUSE-SU-2012:0588 (Google Search)
SuSE Security Announcement: openSUSE-SU-2012:0589 (Google Search)
XForce ISS Database: rpm-loadsigverify-code-execution(74582)
Common Vulnerability Exposure (CVE) ID: CVE-2012-0061
XForce ISS Database: rpm-headerload-code-execution(74583)
Common Vulnerability Exposure (CVE) ID: CVE-2012-0815
XForce ISS Database: rpm-headerverifyinfo-code-execution(74581)
|Copyright||Copyright (C) 2021 Greenbone Networks GmbH|
|This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.