UBUNTU-CVE-2017-7500

Source
https://ubuntu.com/security/CVE-2017-7500
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2017/UBUNTU-CVE-2017-7500.json
JSON Data
https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2017-7500
Related
Published
2018-08-13T17:29:00Z
Modified
2024-12-18T16:40:56Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

It was found that rpm did not properly handle RPM installations when a destination path was a symbolic link to a directory, possibly changing ownership and permissions of an arbitrary directory, and RPM files being placed in an arbitrary destination. An attacker, with write access to a directory in which a subdirectory will be installed, could redirect that directory to an arbitrary location and gain root privilege.

References

Affected packages

Ubuntu:Pro:14.04:LTS / rpm

Package

Name
rpm
Purl
pkg:deb/ubuntu/rpm?arch=src?distro=esm-infra-legacy/trusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

4.*

4.11.1-2
4.11.1-3
4.11.1-3ubuntu0.1
4.11.1-3ubuntu0.1+esm1

Ecosystem specific

{
    "ubuntu_priority": "low"
}

Ubuntu:Pro:16.04:LTS / rpm

Package

Name
rpm
Purl
pkg:deb/ubuntu/rpm?arch=src?distro=esm-apps/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

4.*

4.12.0.1+dfsg1-3build2
4.12.0.1+dfsg1-3build3
4.12.0.1+dfsg1-3ubuntu0.1~esm1

Ecosystem specific

{
    "ubuntu_priority": "low"
}

Ubuntu:18.04:LTS / rpm

Package

Name
rpm
Purl
pkg:deb/ubuntu/rpm?arch=src?distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.14.1+dfsg1-2

Affected versions

4.*

4.12.0.2+dfsg1-2build2
4.14.0+dfsg1-2

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "low",
    "binaries": [
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "debugedit"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "debugedit-dbgsym"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "librpm-dev"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "librpm8"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "librpm8-dbgsym"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "librpmbuild8"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "librpmbuild8-dbgsym"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "librpmio8"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "librpmio8-dbgsym"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "librpmsign8"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "librpmsign8-dbgsym"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "python-rpm"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "python-rpm-dbgsym"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "python3-rpm"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "python3-rpm-dbgsym"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "rpm"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "rpm-common"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "rpm-common-dbgsym"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "rpm-dbgsym"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "rpm-i18n"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "rpm2cpio"
        },
        {
            "binary_version": "4.14.1+dfsg1-2",
            "binary_name": "rpm2cpio-dbgsym"
        }
    ]
}

Ubuntu:20.04:LTS / rpm

Package

Name
rpm
Purl
pkg:deb/ubuntu/rpm?arch=src?distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.14.2.1+dfsg1-1build2

Affected versions

4.*

4.14.2.1+dfsg1-1
4.14.2.1+dfsg1-1build1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "low",
    "binaries": [
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "debugedit"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "debugedit-dbgsym"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "librpm-dev"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "librpm8"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "librpm8-dbgsym"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "librpmbuild8"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "librpmbuild8-dbgsym"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "librpmio8"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "librpmio8-dbgsym"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "librpmsign8"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "librpmsign8-dbgsym"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "python-rpm"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "python-rpm-dbgsym"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "python3-rpm"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "python3-rpm-dbgsym"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "rpm"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "rpm-common"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "rpm-common-dbgsym"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "rpm-dbgsym"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "rpm-i18n"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "rpm2cpio"
        },
        {
            "binary_version": "4.14.2.1+dfsg1-1build2",
            "binary_name": "rpm2cpio-dbgsym"
        }
    ]
}