Lucene search
RedHatRHSA-2020:3908HistorySep 29, 2020 - 7:42 a.m.
(RHSA-2020:3908) Moderate: cpio security update
2020-09-2907:42:42
access.redhat.com
46
0.001 Low
EPSS
Percentile
21.4%
The cpio packages provide the GNU cpio utility for creating and extracting archives, or copying files from one place to another.
Security Fix(es):
- cpio: improper input validation when writing tar header fields leads to unexpect tar generation (CVE-2019-14866)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | s390x | cpio | < 2.11-28.el7 | cpio-2.11-28.el7.s390x.rpm |
| RedHat | 7 | s390x | cpio-debuginfo | < 2.11-28.el7 | cpio-debuginfo-2.11-28.el7.s390x.rpm |
| RedHat | 7 | x86_64 | cpio | < 2.11-28.el7 | cpio-2.11-28.el7.x86_64.rpm |
| RedHat | 7 | ppc64 | cpio-debuginfo | < 2.11-28.el7 | cpio-debuginfo-2.11-28.el7.ppc64.rpm |
| RedHat | 7 | ppc64 | cpio | < 2.11-28.el7 | cpio-2.11-28.el7.ppc64.rpm |
| RedHat | 7 | x86_64 | cpio-debuginfo | < 2.11-28.el7 | cpio-debuginfo-2.11-28.el7.x86_64.rpm |
| RedHat | 7 | ppc64le | cpio | < 2.11-28.el7 | cpio-2.11-28.el7.ppc64le.rpm |
| RedHat | 7 | ppc64le | cpio-debuginfo | < 2.11-28.el7 | cpio-debuginfo-2.11-28.el7.ppc64le.rpm |
Related
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : GNU cpio vulnerability (USN-4176-1)
2019-11-07 00:00:00
SUSE SLED15 / SLES15 Security Update : cpio (SUSE-SU-2019:3059-1)
2019-11-26 00:00:00
EulerOS 2.0 SP5 : cpio (EulerOS-SA-2019-2687)
2019-12-23 00:00:00
openvas
openvas
openSUSE: Security Advisory for cpio (openSUSE-SU-2019:2593-1)
2019-12-01 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:3059-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for cpio (EulerOS-SA-2020-1375)
2020-04-16 00:00:00
centos
centos
cpio security update
2020-10-20 17:51:14
ubuntucve
ubuntucve
CVE-2019-14866
2019-11-02 00:00:00
veracode
veracode
Arbitrary File Rewrite
2020-10-01 03:53:30
alpinelinux
alpinelinux
CVE-2019-14866
2020-01-07 17:15:11
ubuntu
ubuntu
GNU cpio vulnerability
2019-11-06 00:00:00
suse
suse
Security update for cpio (moderate)
2019-11-30 00:00:00
Security update for cpio (moderate)
2019-11-30 00:00:00
amazon
amazon
Medium: cpio
2020-10-22 17:22:00
oraclelinux
oraclelinux
cpio security update
2020-10-06 00:00:00
cpio security update
2021-05-25 00:00:00
cve
cve
CVE-2019-14866
2020-01-07 17:15:11
redhat
redhat
(RHSA-2022:0073) Moderate: cpio security update
2022-01-11 09:07:49
(RHSA-2021:1582) Moderate: cpio security update
2021-05-18 05:34:34
rocky
rocky
cpio security update
2021-05-18 05:34:34
osv
osv
Moderate: cpio security update
2021-05-18 05:34:34
cpio - security update
2019-11-05 00:00:00
cpio - security update
2023-06-04 00:00:00
almalinux
almalinux
Moderate: cpio security update
2021-05-18 05:34:34
cvelist
cvelist
CVE-2019-14866
2020-01-07 16:53:51
debian
debian
[SECURITY] [DLA 1981-1] cpio security update
2019-11-05 18:06:14
[SECURITY] [DLA 3445-1] cpio security update
2023-06-04 20:12:22
prion
prion
Input validation
2020-01-07 17:15:00
ibm
ibm
debiancve
debiancve
CVE-2019-14866
2020-01-07 17:15:11
cloudfoundry
cloudfoundry
USN-4176-1: GNU cpio vulnerability | Cloud Foundry
2019-11-18 00:00:00
redhatcve
redhatcve
CVE-2019-14866
2019-10-25 13:51:42
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0267
2020-01-27 00:00:00
Important Photon OS Security Update - PHSA-2020-0053
2020-01-31 00:00:00
Important Photon OS Security Update - PHSA-2020-0267
2020-01-27 00:00:00
nvd
nvd
CVE-2019-14866
2020-01-07 17:15:11
mageia
mageia
Updated cpio packages fix security vulnerabilities
2019-11-14 19:58:51
freebsd
freebsd
GNU cpio -- multiple vulnerabilities
2019-11-06 00:00:00