An integer overflow flaw was found in rpm which can allow undefined behavior. The highest threat from this vulnerability is to data confidentiality, availability and integrity.
Statement:
rpm as shipped in Red Hat Enterprise Linux is not affected by this flaw, as it only applies on 32-bit systems. Only 64-bit is distributed and supported. Please see https://access.redhat.com/solutions/509373 for more information.
Comment 7Product Security DevOps Team
2021-03-11 23:25:49 UTC
Comment 8Demi Marie Obenour
2021-03-16 22:45:44 UTC
(In reply to Todd Cullum from comment #5)
> Statement:
>
> rpm as shipped in Red Hat Enterprise Linux is not affected by this flaw, as
> it only applies on 32-bit systems. Only 64-bit is distributed and supported.
> Please see https://access.redhat.com/solutions/509373 for more information.
64-bit systems are also affected; see the attached package. Git HEAD has already been patched.