Publishing details

Published on 2024-04-28

Changelog

cpio (2.13+dfsg-7.1ubuntu0.1) mantic-security; urgency=medium

  * SECURITY UPDATE: Path traversal vulnerability
    - debian/patches/CVE-2023-7207.patch: Create symlink placeholder
      if --no-absolute-filenames was given and replace placeholders
      after extraction.
    - debian/patches/revert-CVE-2015-1197-handling.patch: Removed.
    - CVE-2023-7207

 -- Fabian Toepfer <email address hidden>  Sun, 28 Apr 2024 14:32:00 +0200

Available diffs

diff from 2.13+dfsg-7.1 (in Debian) to 2.13+dfsg-7.1ubuntu0.1 (4.0 KiB)

Builds

Built packages

cpio GNU cpio -- a program to manage archives of files

cpio-win32 GNU cpio -- a program to manage archives of files (win32 build)

Package files

cpio-win32_2.13+dfsg-7.1ubuntu0.1_all.deb (87.7 KiB)
cpio_2.13+dfsg-7.1ubuntu0.1.debian.tar.xz (37.9 KiB)
cpio_2.13+dfsg-7.1ubuntu0.1.dsc (2.1 KiB)
cpio_2.13+dfsg-7.1ubuntu0.1_amd64.deb (81.7 KiB)
cpio_2.13+dfsg-7.1ubuntu0.1_arm64.deb (79.3 KiB)
cpio_2.13+dfsg-7.1ubuntu0.1_armhf.deb (81.2 KiB)
cpio_2.13+dfsg-7.1ubuntu0.1_i386.deb (99.7 KiB)
cpio_2.13+dfsg-7.1ubuntu0.1_ppc64el.deb (99.3 KiB)
cpio_2.13+dfsg-7.1ubuntu0.1_riscv64.deb (92.1 KiB)
cpio_2.13+dfsg-7.1ubuntu0.1_s390x.deb (87.6 KiB)
cpio_2.13+dfsg.orig.tar.bz2 (1.3 MiB)