Hi,
I have come across this advisory, CAN-2001-0923, but am unable to see any updates related to it on the Redhat site. I have seen some updates from Connectiva, but have been unable to download, as the file seems to be removed. I have checked the archives of Oct 2001-Jan 2002, but have seen no discussion on this mailing list.
It would be helpful, if you are aware of updates to this issue if any.
Details are from http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2001-0923 Name CAN-2001-0923 (under review) Description RPM Package Manager 4.0.x through 4.0.2.x allows an attacker to execute arbitrary code via corrupted data in the RPM file when the file is queried
Thanks,
_______________________________________________ Rpm-list mailing list Rpm-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/rpm-list
