Lucene search
K

11 matches found

CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.137 views

CVE-2010-4226 affecting package cpio 2.13-5

CVE-2010-4226 affecting package cpio 2.13-5. This CVE either no longer is or was never applicable...

7.2CVSS6.8AI score0.02897EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.47 views

CVE-2010-4226 affecting package cpio 2.13-3

CVE-2010-4226 affecting package cpio 2.13-3. This CVE either no longer is or was never applicable...

7.2CVSS7.5AI score0.02897EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/12/14 12:0 a.m.24 views

openSUSE Security Update : the OBS toolchain (openSUSE-2017-1360)

This OBS toolchain update fixes the following issues : Package 'build' : - CVE-2010-4226: force use of bsdtar for VMs bnc665768 - CVE-2017-14804: Improve file name check extractbuild bsc1069904 - switch baselibs scheme for debuginfo packages from foo-debuginfo-32bit to foo-32bit-debuginfo...

9.9CVSS7.2AI score0.02897EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2017/12/10 12:0 a.m.24 views

openSUSE: Security Advisory for OBS toolchain (openSUSE-SU-2017:3259-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.9CVSS6.5AI score0.02897EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2017/12/09 12:8 p.m.111 views

Security update for the OBS toolchain (important)

This OBS toolchain update fixes the following issues: Package 'build': - CVE-2010-4226: force use of bsdtar for VMs bnc665768 - CVE-2017-14804: Improve file name check extractbuild bsc1069904 - switch baselibs scheme for debuginfo packages from foo-debuginfo-32bit to foo-32bit-debuginfo fate32321...

5CVSS1.6AI score0.02897EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.28 views

openSUSE Security Update : build (openSUSE-SU-2011:0174-1)

The build script uses cpio to extract untrusted rpm packages for bootstrapping virtual machines. cpio is not safe to use for this task, therefore the build script now uses bsdtar instead CVE-2010-4226. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

7.2CVSS8.3AI score0.02897EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2014/02/06 4:0 p.m.4 views

CVE-2010-4226

cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive...

7AI score0.02897EPSS
Exploits0References4
CVE
CVE
added 2014/02/06 4:0 p.m.200 views

CVE-2010-4226

CVE-2010-4226 affects the cpio component as used by the build toolchain (e.g., in openSUSE/SUSE packaging). The vulnerability arises when a symlink within an RPM package archive can be followed to overwrite arbitrary files on the remote host. Reports in connected documents show remediation in the...

7.2CVSS7.4AI score0.02897EPSS
Exploits0References4Affected Software2
Tenable Nessus
Tenable Nessus
added 2011/12/13 12:0 a.m.37 views

SuSE 10 Security Update : build (ZYPP Patch Number 7395)

The build script uses cpio to extract untrusted rpm packages for bootstrapping virtual machines. cpio is not safe to use for this task, therefore the build script now uses bsdtar instead. CVE-2010-4226 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C...

7.2CVSS8.3AI score0.02897EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2011/05/05 12:0 a.m.28 views

openSUSE Security Update : build (openSUSE-SU-2011:0174-1)

The build script uses cpio to extract untrusted rpm packages for bootstrapping virtual machines. cpio is not safe to use for this task, therefore the build script now uses bsdtar instead CVE-2010-4226. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

7.2CVSS8.3AI score0.02897EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/03/31 12:0 a.m.24 views

SuSE 10 Security Update : build (ZYPP Patch Number 7372)

The build script uses cpio to extract untrusted rpm packages for bootstrapping virtual machines. cpio is not safe to use for this task, therefore the build script now uses bsdtar instead. CVE-2010-4226 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C...

7.2CVSS8.3AI score0.02897EPSS
Exploits0References2
Rows per page
Query Builder