rpm-4.11.3-48.0.1.el7.AXS7

エラータID: AXSA:2021-2566:07

Release date: 
Wednesday, November 24, 2021 - 09:07
Subject: 
rpm-4.11.3-48.0.1.el7.AXS7
Affected Channels: 
Asianux Server 7 for x86_64
Severity: 
Moderate
Description: 

The RPM Package Manager (RPM) is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages.

Security Fix(es):

* rpm: Signature checks bypass via corrupted rpm package (CVE-2021-20271)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2021-20271
A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. rpm-4.11.3-48.0.1.el7.AXS7.src.rpm
    MD5: 4e167254b836d1ae7ad0d8cfaed6b271
    SHA-256: 2e4f9c6b58818eb1de8cb1924906fa0065821221dbe3128f5d39b94dd31d0b66
    Size: 3.86 MB

Asianux Server 7 for x86_64
  1. rpm-4.11.3-48.0.1.el7.AXS7.x86_64.rpm
    MD5: 34ebec5139fbf284bb34909b07528190
    SHA-256: 35edf2e30a29c100bacdf8c0d728bc55aeb36386ff1c7f0ec8e065cb4376103a
    Size: 1.16 MB
  2. rpm-apidocs-4.11.3-48.0.1.el7.AXS7.noarch.rpm
    MD5: c879aa49e0dc7c1ca2aea506d8b90dde
    SHA-256: c0af4fec22111c673b43007349689188731e774a96b6b54f7d10f87ec443bea4
    Size: 1.25 MB
  3. rpm-build-4.11.3-48.0.1.el7.AXS7.x86_64.rpm
    MD5: 296aad371dc6cada63e61d8314142c2a
    SHA-256: 38eecaed0bd59fef64a1e1ffa74848880e286c73b3b641b90912746574aec8a5
    Size: 149.18 kB
  4. rpm-build-libs-4.11.3-48.0.1.el7.AXS7.x86_64.rpm
    MD5: e5f1f89ecaa268f16ab7ba2609b0056c
    SHA-256: b5ba0100f33c16fefc0d25022f913589e438c290ea9e3012042070c0f3539969
    Size: 107.20 kB
  5. rpm-cron-4.11.3-48.0.1.el7.AXS7.noarch.rpm
    MD5: c23dc801ecb4cb91c83de44d75855293
    SHA-256: ec766bade564eb60fd810ee8c5ecbe3f6b69a051598f0676fc62a9be98e0f9e9
    Size: 41.75 kB
  6. rpm-devel-4.11.3-48.0.1.el7.AXS7.x86_64.rpm
    MD5: a0aef38764e8c8c01c6392b910819f2e
    SHA-256: ae3fa1223d89f55b885a55264abf48e8ecda0330cd3389aa252cfee2e080388b
    Size: 107.87 kB
  7. rpm-libs-4.11.3-48.0.1.el7.AXS7.x86_64.rpm
    MD5: 36193944096a1a4b197dbb32aaa8c70c
    SHA-256: e77928ed69639541ce28ddaffd3e8817a842ec0e5ce8e86ea33de4e2c600f6ac
    Size: 278.48 kB
  8. rpm-plugin-systemd-inhibit-4.11.3-48.0.1.el7.AXS7.x86_64.rpm
    MD5: b9c27d2df8e3a36dbcceddddb6cef67b
    SHA-256: e9f4f26d3f9dee6578d1e5c52089153f3fd478504a0f8b47518ae83604e07cc2
    Size: 46.59 kB
  9. rpm-python-4.11.3-48.0.1.el7.AXS7.x86_64.rpm
    MD5: 3924245182fd4f13c023977d5067c9a0
    SHA-256: 0a312477b75cb744a4d3bea70d1def7765c178b74daf0056ca6b55bd22e60a67
    Size: 83.70 kB
  10. rpm-sign-4.11.3-48.0.1.el7.AXS7.x86_64.rpm
    MD5: 150cdf78d7374eafb32743337551af28
    SHA-256: cdc42a7887949345636a49f8ffc53e6a524efcef16771632bd42b485707fba75
    Size: 48.60 kB
  11. rpm-build-libs-4.11.3-48.0.1.el7.AXS7.i686.rpm
    MD5: 35a05fd73cbf8d43f4aebef396c4e094
    SHA-256: 50f2f2d495175cbf286cfde0e085e74d35047a6d5b26c7221d89d67d32bccd82
    Size: 106.43 kB
  12. rpm-devel-4.11.3-48.0.1.el7.AXS7.i686.rpm
    MD5: d76d73eadea1d3539ce3b37b81cb0a23
    SHA-256: 6cff6bab873fa01e5304dc41397d07cec9ad8e31ef2eae7cfa21d8cc42788f7c
    Size: 107.46 kB
  13. rpm-libs-4.11.3-48.0.1.el7.AXS7.i686.rpm
    MD5: 82b253cefe2e2f4ad49841b651f5cd07
    SHA-256: a9a29feac879d613d86f540b62eafb9c785f4c9a2d913bc152c74bfcb46064ff
    Size: 279.97 kB