Update: Red Hat up2date

A flaw in up2date, a tool that automatically looks for and installs Red Hat patches, does not properly check for a valid GPG signature.

An attacker could exploit this to trick the machine into downloading and installing malicious code.

Red Hat has released updated packages to fix the vulnerability, available at: https://rhn.redhat.com/errata/RHSA-2003-255.html

Join the newsletter!

Error: Please check your email address.

More about Red Hat

Show Comments