[Bug-cpio] 2.12: CVE-2015-1197?

bug-cpio

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug-cpio] 2.12: CVE-2015-1197?

From:	Christian Weisgerber
Subject:	[Bug-cpio] 2.12: CVE-2015-1197?
Date:	Thu, 17 Sep 2015 22:20:33 +0200
User-agent:	Mutt/1.5.24 (2015-08-30)

The new release of GNU cpio 2.12 does not appear to address the
directory traversal vulnerability of CVE-2015-1197.

Collected information:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774669

Is this an oversight, a conscious design issue, ...?

-- 
Christian "naddy" Weisgerber                          address@hidden

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug-cpio] 2.12: CVE-2015-1197?, Christian Weisgerber <=

Prev by Date: [Bug-cpio] cpio 2.12: symlink-long test portability fix
Next by Date: [Bug-cpio] two sections of the help text have the same heading
Previous by thread: [Bug-cpio] cpio 2.12: symlink-long test portability fix
Next by thread: [Bug-cpio] two sections of the help text have the same heading
Index(es):
- Date
- Thread