Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-1197HistoryFeb 19, 2015 - 3:59 p.m.
CVE-2015-1197
2015-02-1915:59:00
Debian Security Bug Tracker
security-tracker.debian.org
28
1.9 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
9.0%
cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cpio | < 2.11+dfsg-4.1 | cpio_2.11+dfsg-4.1_all.deb |
| Debian | 11 | all | cpio | < 2.11+dfsg-4.1 | cpio_2.11+dfsg-4.1_all.deb |
| Debian | 10 | all | cpio | < 2.11+dfsg-4.1 | cpio_2.11+dfsg-4.1_all.deb |
| Debian | 999 | all | cpio | < 2.11+dfsg-4.1 | cpio_2.11+dfsg-4.1_all.deb |
| Debian | 13 | all | cpio | < 2.11+dfsg-4.1 | cpio_2.11+dfsg-4.1_all.deb |
Related
nessus
nessus
EulerOS Virtualization for ARM 64 3.0.2.0 : cpio (EulerOS-SA-2020-1962)
2020-09-08 00:00:00
Mandriva Linux Security Advisory : cpio (MDVSA-2015:066)
2015-03-30 00:00:00
EulerOS Virtualization 2.10.0 : cpio (EulerOS-SA-2023-3463)
2024-01-16 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for cpio (EulerOS-SA-2024-1425)
2024-03-21 00:00:00
Huawei EulerOS: Security Advisory for cpio (EulerOS-SA-2023-3463)
2023-12-22 00:00:00
Huawei EulerOS: Security Advisory for cpio (EulerOS-SA-2023-3167)
2023-11-10 00:00:00
prion
prion
Code injection
2015-02-19 15:59:00
Path traversal
2024-02-29 01:42:00
amazon
amazon
Important: cpio
2024-02-29 10:03:00
Important: cpio
2024-02-28 23:54:00
ubuntucve
ubuntucve
CVE-2015-1197
2015-02-19 00:00:00
CVE-2023-7207
2024-02-29 00:00:00
securityvulns
securityvulns
[ MDVSA-2015:066 ] cpio
2015-04-20 00:00:00
libarchive directory traversal
2015-04-20 00:00:00
alpinelinux
alpinelinux
CVE-2015-1197
2015-02-19 15:59:00
archlinux
archlinux
cpio: directory traversal
2015-03-23 00:00:00
cve
cve
thn
thn
debiancve
debiancve
CVE-2023-7207
2024-02-29 01:42:59
freebsd
freebsd
cpio -- multiple vulnerabilities
2015-03-27 00:00:00
GNU cpio -- multiple vulnerabilities
2019-11-06 00:00:00
mageia
mageia
Updated cpio package fixes security vulnerability
2015-02-19 17:43:07
Updated cpio packages fix security vulnerabilities
2019-11-14 19:58:51
gentoo
gentoo
GNU cpio: Multiple vulnerabilities
2015-02-15 00:00:00
packetstorm
packetstorm
Zimbra Collaboration Suite TAR Path Traversal
2022-10-20 00:00:00
metasploit
metasploit
TAR Path Traversal in Zimbra (CVE-2022-41352)
2022-10-06 17:23:53
zdt
zdt
Zimbra Collaboration Suite TAR Path Traversal Exploit
2022-10-21 00:00:00
ubuntu
ubuntu
GNU cpio vulnerabilities
2016-02-22 00:00:00
securelist
securelist
Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)
2022-10-13 08:00:21
redhatcve
redhatcve
CVE-2023-7207
2024-02-29 08:04:56
CVE-2017-7516
2018-01-29 12:50:11
attackerkb
attackerkb
CVE-2022-41352
2022-09-26 00:00:00
rapid7blog
rapid7blog
1.9 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
9.0%
Related for DEBIANCVE:CVE-2015-1197