CVE-2021-20271
First published: Tue Mar 02 2021(Updated: )
RPM could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the signature check function. By persuading a victim to open a specially-crafted package file, an attacker could exploit this vulnerability to cause RPM database corruption and execute arbitrary code on the system.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Cloud Pak for Security (CP4S) | <=1.7.2.0 | |
| IBM Cloud Pak for Security (CP4S) | <=1.7.1.0 | |
| IBM Cloud Pak for Security (CP4S) | <=1.7.0.0 | |
| Rpm Rpm | >=4.15.0<4.15.1.3 | |
| Rpm Rpm | >=4.16.0<4.16.1.3 | |
| Rpm Rpm | =4.15.0-alpha | |
| Rpm Rpm | =4.15.0-beta1 | |
| Rpm Rpm | =4.15.0-rc1 | |
| Rpm Rpm | =4.16.0-alpha | |
| Rpm Rpm | =4.16.0-beta2 | |
| Rpm Rpm | =4.16.0-beta3 | |
| Rpm Rpm | =4.16.0-rc1 | |
| Redhat Enterprise Linux | =8.0 | |
| Fedoraproject Fedora | =32 | |
| Fedoraproject Fedora | =33 | |
| Fedoraproject Fedora | =34 | |
| Starwindsoftware Starwind Virtual San | =v8-build14398 |
Remedy
https://github.com/rpm-software-management/rpm/commit/d6a86b5e69e46cc283b1e06c92343319beb42e21
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://exchange.xforce.ibmcloud.com/vulnerabilities/198961
- https://www.ibm.com/support/pages/node/6493729 (Advisory)
- https://bugzilla.redhat.com/show_bug.cgi?id=1934125
- https://github.com/rpm-software-management/rpm/commit/d6a86b5e69e46cc283b1e06c92343319beb42e21
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHRPNBCRPDJHHQE3MBPSZK4H7X2IM7AC/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YILPBTPSBRYL4POBI3F4YUSVPSOQNJBY/
- https://security.gentoo.org/glsa/202107-43
- https://www.starwindsoftware.com/security/sw-20220805-0002/
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1938027
- https://access.redhat.com/errata/RHSA-2021:2574
- https://access.redhat.com/security/cve/cve-2021-20271
- https://access.redhat.com/errata/RHSA-2021:2791
- https://access.redhat.com/errata/RHSA-2021:4771
- https://access.redhat.com/errata/RHSA-2021:4785
- https://access.redhat.com/errata/RHSA-2021:4975
Frequently Asked Questions
What is CVE-2021-20271?
CVE-2021-20271 is a vulnerability in RPM that could allow a remote attacker to execute arbitrary code on the system.
What is the severity of CVE-2021-20271?
CVE-2021-20271 has a severity rating of high with a CVSS score of 7.
Which software products are affected by CVE-2021-20271?
Cloud Pak for Security (CP4S) versions 1.7.2.0, 1.7.1.0, and 1.7.0.0 are affected by CVE-2021-20271. Additionally, RPM versions 4.15.0 to 4.15.1.3 and 4.16.0 to 4.16.1.3 are also affected.
How can an attacker exploit CVE-2021-20271?
An attacker can exploit CVE-2021-20271 by convincing a victim to install a seemingly verifiable package with a modified signature header, which can lead to RPM database corruption and code execution.
How can I fix CVE-2021-20271?
To fix CVE-2021-20271, it is recommended to update to a patched version of RPM or apply the relevant security patch provided by the vendor.
- agent/type
- agent/remedy
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2021-20271
- agent/first-publish-date
- agent/softwarecombine
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- vendor/rpm
- canonical/rpm rpm
- version/rpm rpm/4.15.0
- version/rpm rpm/4.16.0
- version/rpm rpm/4.15.0-alpha
- version/rpm rpm/4.15.0-beta1
- version/rpm rpm/4.15.0-rc1
- version/rpm rpm/4.16.0-alpha
- version/rpm rpm/4.16.0-beta2
- version/rpm rpm/4.16.0-beta3
- version/rpm rpm/4.16.0-rc1
- vendor/redhat
- canonical/redhat enterprise linux
- version/redhat enterprise linux/8.0
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/32
- version/fedoraproject fedora/33
- version/fedoraproject fedora/34
- vendor/starwindsoftware
- canonical/starwindsoftware starwind virtual san
- version/starwindsoftware starwind virtual san/v8-build14398
- vendor/ibm
- canonical/ibm cloud pak for security (cp4s)
- version/ibm cloud pak for security (cp4s)/1.7.2.0
- version/ibm cloud pak for security (cp4s)/1.7.1.0
- version/ibm cloud pak for security (cp4s)/1.7.0.0