Update: Red Hat up2date

A flaw in up2date, a tool that automatically looks for and installs Red Hat patches, does not properly check for a valid GPG signature.

An attacker could exploit this to trick the machine into downloading and installing malicious code.

Red Hat has released updated packages to fix the vulnerability, available at: https://rhn.redhat.com/errata/RHSA-2003-255.html

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about Red Hat

Show Comments