oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Multiple vulnerabilities in RPM – and a rant

From: Kurt Seifried <kseifried () redhat com>
Date: Fri, 26 Aug 2016 13:46:40 -0600
On Fri, Aug 26, 2016 at 1:32 PM, Hanno Böck <hanno () hboeck de> wrote:


https://blog.fuzzing-project.org/52-Multiple-vulnerabilities-in-RPM-and-a-
rant.html

Okay, but RPM stands for “Red Hat package manager”, so maybe Red Hat
feels responsible. So I reported three bugs with sample files



Actually it doesn't. RPM = RPM Package Manager (like GNU).

http://www.rpm.org/
https://en.wikipedia.org/wiki/RPM_Package_Manager

Also I would note that Red Hat isn't the only user of RPM, there are a
large number of distros that use RPM (e.g. SUSE).

--
Kurt Seifried -- Red Hat -- Product Security -- Cloud
PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Red Hat Product Security contact: secalert () redhat com
Previous By Date Next
Previous By Thread Next

Current thread: