UbuntuUpdates.org

Package "cpio"

Name: cpio

Description:

GNU cpio -- a program to manage archives of files

Latest version: 2.11+dfsg-5ubuntu1.1
Release: xenial (16.04)
Level: security
Repository: main
Homepage: http://www.gnu.org/software/cpio/

Links


Download "cpio"


Other versions of "cpio" in Xenial

Repository Area Version
base main 2.11+dfsg-5ubuntu1
updates main 2.11+dfsg-5ubuntu1.1

Changelog

Version: 2.11+dfsg-5ubuntu1.1 2019-11-06 18:06:18 UTC

  cpio (2.11+dfsg-5ubuntu1.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Improper input validation
    - debian/patches/CVE-2019-14866.patch: improve diagnostics,
      remove to_oct_or_error, adding new macro in
      src/copyout.c, src/extern.h, src/tar.c.
    - CVE-2019-14866

 -- <email address hidden> (Leonidas S. Barbosa) Tue, 05 Nov 2019 13:40:47 -0300

CVE-2019-14866 improper input validation when writing tar header fields leads to unexpect tar generation



About   -   Send Feedback to @ubuntu_updates