{"id":"CVE-2010-2197","details":"rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote attackers to remove home directories via vectors involving a ;~ (semicolon tilde) sequence in a Name tag.","modified":"2026-04-10T03:41:16.619584Z","published":"2010-06-08T18:30:10Z","references":[{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=125517"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/59423"}],"schema_version":"1.7.5"}