5 matches found
Debian Security Advisory DSA 846-1 (cpio)
The remote host is missing an update to cpio announced via advisory DSA 846-1. Two vulnerabilities have been discovered in cpio, a program to manage archives of files. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-1111 Imran Ghory discovered a race...
Mandrake Linux Security Advisory : cpio (MDKSA-2007:233)
Buffer overflow in the safernamesuffix function in GNU cpio has unspecified attack vectors and impact, resulting in a crashing stack. This problem is originally found in tar, but affects cpio too, due to similar code fragments. CVE-2007-4476 Directory traversal vulnerability in cpio 2.6 and earli...
Mandrake Linux Security Advisory : cpio (MDKSA-2005:116-1)
A race condition has been found in cpio 2.6 and earlier which allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete CVE-2005-1111. A vulnerability has...
CVE-2005-1229
Directory traversal vulnerability in cpio 2.6 and earlier allows remote attackers to write to arbitrary directories via a .. dot dot in a cpio file...
CVE-2005-1229
Directory traversal vulnerability in cpio 2.6 and earlier allows remote attackers to write to arbitrary directories via a .. dot dot in a cpio file...