It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
[ { "source": "https://github.com/rpm-software-management/rpm/commit/96ec957e281220f8e137a2d5eb23b83a6377d556", "signature_version": "v1", "target": { "file": "lib/fsm.c", "function": "fsmMkdir" }, "digest": { "length": 342.0, "function_hash": "51856694465730866450330405833723620433" }, "deprecated": false, "signature_type": "Function", "id": "CVE-2021-35939-1956640a" }, { "source": "https://github.com/rpm-software-management/rpm/commit/96ec957e281220f8e137a2d5eb23b83a6377d556", "signature_version": "v1", "target": { "file": "lib/fsm.c", "function": "fsmMkdirs" }, "digest": { "length": 1385.0, "function_hash": "186034111476049186295300829892025012098" }, "deprecated": false, "signature_type": "Function", "id": "CVE-2021-35939-92eaef60" }, { "source": "https://github.com/rpm-software-management/rpm/commit/96ec957e281220f8e137a2d5eb23b83a6377d556", "signature_version": "v1", "target": { "file": "lib/fsm.c" }, "digest": { "line_hashes": [ "154644994441887861360596271520169850884", "175152149572366683436651911034386904602", "119096473066062126113532352468298658264", "25701670050406071112891284538584764463", "261673059063099402387109901133705588583", "256059668845387079798019009302741893469", "19321468217791743603870007706489142571", "187438108327857256392028504288385847541", "103918263139658266359659253390788510811", "150941521499088497925333547599528997896", "283948074742624875513857873242787832039", "255006609071866433702441091947630269594", "323137001026592880068027188476784156146", "150931235151849979024299347001094434440", "252780761503720508236924016421339661105", "306486012318275614874420375777983004823", "81147660838892119558011752561765380636", "37797368656939761556918185850484712971", "180172825599815570140813602814305065781", "98514788840922419558881610077720269328", "17271428397838605878717237933182815319", "136485476269083097183459722610403416873", "177340075446683085766489488654292829106", "30099617839478745811027949631861677731", "114474637711227907794265604611036663062", "19758600002095258949316930507367743926", "51981754815234216761562766790361244109", "314337829508032493075624335776805589329", "106389535289211416977866438085381885635", "262111582687733395837305764171379122112", "47211532644488802689508623263915291357", "123990790715856384943520816804110341608", "33648731061743324655975397418963000241", "91105230833402031625430458487020752614", "162792721992481528839006550469104190598", "277472717077857046886642537857922451993", "163972938749664446231861700577244659944", "219564738707654954082414494462882481818", "200380991837978245483462706612671581742", "74060363666841549345116399017296616347", "146778608273975846262152467477418034100", "171186788299548222697400784015004250081", "96592579453297897904035690341527078532", "16505914781300497045734244258737962600", "285396548986910663191192016704370084766", "70103649481855858505866411847677118660", "302217269603846422509190067178406842050", "39964777620690388546747779587034311530" ], "threshold": 0.9 }, "deprecated": false, "signature_type": "Line", "id": "CVE-2021-35939-acb47abe" }, { "source": "https://github.com/rpm-software-management/rpm/commit/96ec957e281220f8e137a2d5eb23b83a6377d556", "signature_version": "v1", "target": { "file": "lib/fsm.c", "function": "rpmPackageFilesInstall" }, "digest": { "length": 4983.0, "function_hash": "152832777518386822551335769201256915448" }, "deprecated": false, "signature_type": "Function", "id": "CVE-2021-35939-dd9ca3d6" } ]