5 matches found
RHEL 7 : cpio (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - cpio: directory traversal through symlinks CVE-2015-1197 - cpio: out of bounds write CVE-2016-2037 Note...
RHEL 6 : cpio (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - cpio: improper input validation when writing tar header fields leads to unexpected tar generation...
K000139570: UNIX CPIO vulnerability CVE-2023-7216
Security Advisory Description A path traversal vulnerability was found in the CPIO utility. This issue could allow a remote unauthenticated attacker to trick a user into opening a specially crafted archive. During the extraction process, the archiver could follow symlinks outside of the intended...
CVE-2023-7216
CVE-2023-7216 describes a path-traversal vulnerability in the CPIO utility where, during extraction of a crafted archive, a remote, unauthenticated attacker could cause the archiver to follow symlinks outside the target directory, enabling files to be written in arbitrary locations. Multiple sour...
CVE-2023-7216
Removed by vendor...