What the vulnerability does

01Description

A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.

Key dates

02Disclosure timeline

April 30, 2021 CVE published
August 3, 2024 Record updated