It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
[
{
"signature_type": "Function",
"digest": {
"function_hash": "51856694465730866450330405833723620433",
"length": 342.0
},
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "fsmMkdir",
"file": "lib/fsm.c"
},
"source": "https://github.com/rpm-software-management/rpm/commit/96ec957e281220f8e137a2d5eb23b83a6377d556",
"id": "CVE-2021-35939-1956640a"
},
{
"signature_type": "Function",
"digest": {
"function_hash": "186034111476049186295300829892025012098",
"length": 1385.0
},
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "fsmMkdirs",
"file": "lib/fsm.c"
},
"source": "https://github.com/rpm-software-management/rpm/commit/96ec957e281220f8e137a2d5eb23b83a6377d556",
"id": "CVE-2021-35939-92eaef60"
},
{
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"154644994441887861360596271520169850884",
"175152149572366683436651911034386904602",
"119096473066062126113532352468298658264",
"25701670050406071112891284538584764463",
"261673059063099402387109901133705588583",
"256059668845387079798019009302741893469",
"19321468217791743603870007706489142571",
"187438108327857256392028504288385847541",
"103918263139658266359659253390788510811",
"150941521499088497925333547599528997896",
"283948074742624875513857873242787832039",
"255006609071866433702441091947630269594",
"323137001026592880068027188476784156146",
"150931235151849979024299347001094434440",
"252780761503720508236924016421339661105",
"306486012318275614874420375777983004823",
"81147660838892119558011752561765380636",
"37797368656939761556918185850484712971",
"180172825599815570140813602814305065781",
"98514788840922419558881610077720269328",
"17271428397838605878717237933182815319",
"136485476269083097183459722610403416873",
"177340075446683085766489488654292829106",
"30099617839478745811027949631861677731",
"114474637711227907794265604611036663062",
"19758600002095258949316930507367743926",
"51981754815234216761562766790361244109",
"314337829508032493075624335776805589329",
"106389535289211416977866438085381885635",
"262111582687733395837305764171379122112",
"47211532644488802689508623263915291357",
"123990790715856384943520816804110341608",
"33648731061743324655975397418963000241",
"91105230833402031625430458487020752614",
"162792721992481528839006550469104190598",
"277472717077857046886642537857922451993",
"163972938749664446231861700577244659944",
"219564738707654954082414494462882481818",
"200380991837978245483462706612671581742",
"74060363666841549345116399017296616347",
"146778608273975846262152467477418034100",
"171186788299548222697400784015004250081",
"96592579453297897904035690341527078532",
"16505914781300497045734244258737962600",
"285396548986910663191192016704370084766",
"70103649481855858505866411847677118660",
"302217269603846422509190067178406842050",
"39964777620690388546747779587034311530"
]
},
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "lib/fsm.c"
},
"source": "https://github.com/rpm-software-management/rpm/commit/96ec957e281220f8e137a2d5eb23b83a6377d556",
"id": "CVE-2021-35939-acb47abe"
},
{
"signature_type": "Function",
"digest": {
"function_hash": "152832777518386822551335769201256915448",
"length": 4983.0
},
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "rpmPackageFilesInstall",
"file": "lib/fsm.c"
},
"source": "https://github.com/rpm-software-management/rpm/commit/96ec957e281220f8e137a2d5eb23b83a6377d556",
"id": "CVE-2021-35939-dd9ca3d6"
}
]