Filtered by vendor Baseurl Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2013-1910 2 Baseurl, Debian 2 Yum, Debian Linux 2024-08-06 9.8 Critical
yum does not properly handle bad metadata, which allows an attacker to cause a denial of service and possibly have other unspecified impact via a Trojan horse file in the metadata of a remote repository.
CVE-2014-0022 2 Baseurl, Redhat 2 Yum, Enterprise Linux 2024-08-06 N/A
The installUpdates function in yum-cron/yum-cron.py in yum 3.4.3 and earlier does not properly check the return value of the sigCheckPkg function, which allows remote attackers to bypass the RMP package signing restriction via an unsigned package.