Format: 1.8
Date: Sun, 28 Apr 2024 14:31:25 +0200
Source: cpio
Architecture: source
Version: 2.13+dfsg-2ubuntu0.4
Distribution: focal-security
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
Changed-By: Fabian Toepfer <fabian.toepfer@canonical.com>
Changes:
 cpio (2.13+dfsg-2ubuntu0.4) focal-security; urgency=medium
 .
   * SECURITY UPDATE: Path traversal vulnerability
     - debian/patches/CVE-2023-7207.patch: Create symlink placeholder
       if --no-absolute-filenames was given and replace placeholders
       after extraction.
     - debian/patches/revert-CVE-2015-1197-handling.patch: Removed.
     - CVE-2023-7207
Checksums-Sha1:
 36b481b209e1c9f385cba7169d35a66315b16629 2170 cpio_2.13+dfsg-2ubuntu0.4.dsc
 1c374b843fb977a1661a29c9179fe3f0c0f19b40 37680 cpio_2.13+dfsg-2ubuntu0.4.debian.tar.xz
 be00ccb9d3da8bdafc0bb011b4d04ab7c5412118 5569 cpio_2.13+dfsg-2ubuntu0.4_source.buildinfo
Checksums-Sha256:
 9b132afcb8af58bbaab043ce99423ea3627ad3fbe48b1c03ddbece60c442fb1b 2170 cpio_2.13+dfsg-2ubuntu0.4.dsc
 c1db93be58177ec5fdf98076eb20877891de26648d262313558be442d3f85c9d 37680 cpio_2.13+dfsg-2ubuntu0.4.debian.tar.xz
 261e7ebee8f9ecf51941024be3b837f75bd6f1fd93fc87bd7bb78d39dc043cdf 5569 cpio_2.13+dfsg-2ubuntu0.4_source.buildinfo
Files:
 37cbb5acf2688228f9f9fff5e38d77e8 2170 utils important cpio_2.13+dfsg-2ubuntu0.4.dsc
 5b902ec39609f8bdd8092cb4fed72750 37680 utils important cpio_2.13+dfsg-2ubuntu0.4.debian.tar.xz
 32ebb2fefa7026423621dcd49b9097ed 5569 utils important cpio_2.13+dfsg-2ubuntu0.4_source.buildinfo
Original-Maintainer: Anibal Monsalve Salazar <anibal@debian.org>