[Rpm-maint] rpm security exposure http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2059

swamy sangamesh swamy.sangamesh at gmail.com
Mon Nov 1 07:19:03 UTC 2010


Hi All,

We come to know about rpm security exposure
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2059
looks like fix is available from 4.5.x source. But unfortunately we are
using older rpm-3.0.5, and due to some
dependency, upgrading to newer version is extremely  difficult.

I have not much knowledge about rpm source code.
My question is, the fix available can also be applied to older versions of
rpms like-3.0.5
is their patch available for older version so if anyone which can't  upgrade
to latest version
can apply and use it ?

-- 
Thanks & Regards,
Sangamesh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20101101/f5e4fe77/attachment.html>


More information about the Rpm-maint mailing list