CVE-2017-7500
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-7500
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-7500.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-7500
- Downstream
- Related
- Published
- 2018-08-13T17:29:00Z
- Modified
- 2025-10-21T04:21:05.348959Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
It was found that rpm did not properly handle RPM installations when a destination path was a symbolic link to a directory, possibly changing ownership and permissions of an arbitrary directory, and RPM files being placed in an arbitrary destination. An attacker, with write access to a directory in which a subdirectory will be installed, could redirect that directory to an arbitrary location and gain root privilege.
- References
Affected packages
Git / github.com/rpm-software-management/rpm
Affected ranges
- Type
- GIT
- Repo
- https://github.com/rpm-software-management/rpm
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedFixed
Affected versions
rpm-4.*
rpm-4.11.0-alpha
rpm-4.12.0-alpha
rpm-4.13.0-alpha
rpm-4.4-release
rpm-4.4.1-release
rpm-4.4.2-release
rpm-4.4.2.1-rc1
rpm-4.4.2.1-rc2
rpm-4.8.0-beta1
Database specific
vanir_signatures
[
{
"id": "CVE-2017-7500-2910d3ee",
"signature_type": "Function",
"digest": {
"length": 4307.0,
"function_hash": "233530214035563793370843555192189641103"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://github.com/rpm-software-management/rpm/commit/c815822c8bdb138066ff58c624ae83e3a12ebfa9",
"target": {
"function": "rpmfilesVerify",
"file": "lib/verify.c"
}
},
{
"id": "CVE-2017-7500-43a12259",
"signature_type": "Line",
"digest": {
"line_hashes": [
"239671988295184614856978349487568478067",
"19450716624506856550250097797469092389",
"250682327474676124318368018576928341558",
"111235334660195848448456541765670895264",
"329795812349938396996022338722829754201",
"201187616379880976329562329711075448237"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://github.com/rpm-software-management/rpm/commit/c815822c8bdb138066ff58c624ae83e3a12ebfa9",
"target": {
"file": "lib/verify.c"
}
},
{
"id": "CVE-2017-7500-43e41be3",
"signature_type": "Function",
"digest": {
"length": 3235.0,
"function_hash": "48067076022380632713499368211808245130"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://github.com/rpm-software-management/rpm/commit/f2d3be2a8741234faaa96f5fd05fdfdc75779a79",
"target": {
"function": "rpmPackageFilesInstall",
"file": "lib/fsm.c"
}
},
{
"id": "CVE-2017-7500-9f11fe1d",
"signature_type": "Line",
"digest": {
"line_hashes": [
"264126973091301003040853053494319189921",
"298447752790504042642254408681848776755",
"294692896974570784040787141269428342145",
"138067321898803316349977720914849998191",
"158096781839352298848545423017932260947",
"93269803876808907005176407753494945294",
"137046692173860993461998873713267951363",
"137302550875407019462629274778944273964",
"41347062033662188884304045978624277588",
"260383492752053098008012928430949396045",
"244654994588480788169805851042092453307",
"211461232812925818734804653279391152314",
"204240354157755644958980960327127388508",
"302694156893773645515401717223033417921",
"10471339086552282659663593381957303989",
"43580384629917002049581188334897998765",
"332554652458105320167297679298012300484"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://github.com/rpm-software-management/rpm/commit/f2d3be2a8741234faaa96f5fd05fdfdc75779a79",
"target": {
"file": "lib/fsm.c"
}
},
{
"id": "CVE-2017-7500-bee95872",
"signature_type": "Function",
"digest": {
"length": 1431.0,
"function_hash": "312799423906078026915657293693984079195"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://github.com/rpm-software-management/rpm/commit/f2d3be2a8741234faaa96f5fd05fdfdc75779a79",
"target": {
"function": "fsmVerify",
"file": "lib/fsm.c"
}
}
]