CVE-2010-2199

Name of the Vulnerable Software and Affected Versions RPM versions 4.8.0 and earlier

Description The issue is related to the replacement or deletion of files in RPM package upgrades or removals, where the metadata of an executable file is not properly reset. This might allow local users to bypass intended access restrictions by creating a hard link to a vulnerable file that has a POSIX ACL. Additionally, multiple vulnerabilities in the RPM package, prior to version 4.9.1.3, in Gentoo Linux may lead to confidentiality, integrity, and availability breaches of protected information, potentially exploitable remotely.

Recommendations For RPM versions 4.8.0 and earlier, update to version 4.9.1.3 or later to resolve the issue. As a temporary workaround, consider restricting access to files with POSIX ACLs to minimize the risk of exploitation.