CVE-2011-2515
N/A
N/A
Summary
PackageKit 0.6.17 allows installation of unsigned RPM packages as though they were signed which may allow installation of non-trusted packages and execution of arbitrary code.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| packagekit | packagekit | 0.6.15 | affected |
| packagekit | packagekit | 0.6.17 | affected |
Weaknesses
- installs unsigned RPM packages as though they were signed
ADP Enrichment
CVE Program Container
Additional References
- https://security-tracker.debian.org/tracker/CVE-2011-2515
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2515
- https://access.redhat.com/security/cve/cve-2011-2515
- https://www.securityfocus.com/bid/48557/info
References
- https://security-tracker.debian.org/tracker/CVE-2011-2515
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2515
- https://access.redhat.com/security/cve/cve-2011-2515
- https://www.securityfocus.com/bid/48557/info
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.