Search for packages
| purl | pkg:deb/debian/rpm@4.12.0.2%2Bdfsg1-2 |
| Next non-vulnerable version | 4.18.0+dfsg-1+deb12u1 |
| Latest non-vulnerable version | 4.18.0+dfsg-1+deb12u1 |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-8tqq-98fr-aaad
Aliases: CVE-2021-20266 |
A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability. |
Affected by 4 other vulnerabilities. |
|
VCID-q7k2-h4de-aaak
Aliases: CVE-2021-20271 |
A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability. |
Affected by 4 other vulnerabilities. |
|
VCID-syg9-n9mv-aaag
Aliases: CVE-2021-3421 |
A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. This flaw affects RPM versions before 4.17.0-alpha. |
Affected by 4 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:07:05.224173+00:00 | Debian Oval Importer | Affected by | VCID-syg9-n9mv-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T05:50:21.734136+00:00 | Debian Oval Importer | Affected by | VCID-8tqq-98fr-aaad | None | 36.1.3 |
| 2025-06-21T03:06:40.327127+00:00 | Debian Oval Importer | Affected by | VCID-q7k2-h4de-aaak | None | 36.1.3 |
| 2025-06-21T02:32:20.267475+00:00 | Debian Oval Importer | Affected by | VCID-syg9-n9mv-aaag | None | 36.1.3 |
| 2025-06-08T11:36:09.407723+00:00 | Debian Oval Importer | Affected by | VCID-syg9-n9mv-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-07T23:28:56.018562+00:00 | Debian Oval Importer | Affected by | VCID-8tqq-98fr-aaad | None | 36.1.0 |
| 2025-06-07T20:39:25.634708+00:00 | Debian Oval Importer | Affected by | VCID-q7k2-h4de-aaak | None | 36.1.0 |
| 2025-06-07T19:56:26.804039+00:00 | Debian Oval Importer | Affected by | VCID-syg9-n9mv-aaag | None | 36.1.0 |
| 2025-04-12T21:18:11.571382+00:00 | Debian Oval Importer | Affected by | VCID-q7k2-h4de-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:11:19.275041+00:00 | Debian Oval Importer | Affected by | VCID-8tqq-98fr-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:20:40.614127+00:00 | Debian Oval Importer | Affected by | VCID-syg9-n9mv-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-07T22:00:50.566099+00:00 | Debian Oval Importer | Affected by | VCID-8tqq-98fr-aaad | None | 36.0.0 |
| 2025-04-07T19:09:54.380413+00:00 | Debian Oval Importer | Affected by | VCID-q7k2-h4de-aaak | None | 36.0.0 |
| 2025-04-07T18:34:18.043138+00:00 | Debian Oval Importer | Affected by | VCID-syg9-n9mv-aaag | None | 36.0.0 |
| 2025-04-07T06:49:16.883827+00:00 | Debian Importer | Affected by | VCID-q7k2-h4de-aaak | None | 36.0.0 |
| 2025-04-07T05:54:45.110988+00:00 | Debian Importer | Affected by | VCID-8tqq-98fr-aaad | None | 36.0.0 |
| 2025-04-06T22:21:36.172568+00:00 | Debian Importer | Affected by | VCID-syg9-n9mv-aaag | None | 36.0.0 |
| 2025-02-20T01:57:48.692237+00:00 | Debian Importer | Affected by | VCID-syg9-n9mv-aaag | None | 35.1.0 |
| 2025-02-19T19:27:53.692953+00:00 | Debian Importer | Affected by | VCID-q7k2-h4de-aaak | None | 35.1.0 |
| 2025-02-19T19:27:28.509273+00:00 | Debian Importer | Affected by | VCID-8tqq-98fr-aaad | None | 35.1.0 |
| 2024-04-25T01:25:41.231645+00:00 | Debian Importer | Affected by | VCID-syg9-n9mv-aaag | None | 34.0.0rc4 |
| 2024-04-24T21:09:03.548816+00:00 | Debian Importer | Affected by | VCID-q7k2-h4de-aaak | None | 34.0.0rc4 |
| 2024-04-24T21:08:48.013004+00:00 | Debian Importer | Affected by | VCID-8tqq-98fr-aaad | None | 34.0.0rc4 |
| 2024-01-11T02:26:09.643135+00:00 | Debian Importer | Affected by | VCID-syg9-n9mv-aaag | None | 34.0.0rc2 |
| 2024-01-10T22:12:27.902170+00:00 | Debian Importer | Affected by | VCID-q7k2-h4de-aaak | None | 34.0.0rc2 |
| 2024-01-10T22:12:16.664142+00:00 | Debian Importer | Affected by | VCID-8tqq-98fr-aaad | None | 34.0.0rc2 |
| 2024-01-04T14:45:30.936444+00:00 | Debian Importer | Affected by | VCID-syg9-n9mv-aaag | None | 34.0.0rc1 |
| 2024-01-04T11:26:11.773023+00:00 | Debian Importer | Affected by | VCID-q7k2-h4de-aaak | None | 34.0.0rc1 |
| 2024-01-04T11:26:01.324575+00:00 | Debian Importer | Affected by | VCID-8tqq-98fr-aaad | None | 34.0.0rc1 |