Launchpad has imported 12 comments from the remote bug at
https://bugzilla.redhat.com/show_bug.cgi?id=280961.
If you reply to an imported comment from within Launchpad, your comment
will be sent to the remote bug automatically. Read more about
Launchpad's inter-bugtracker facilities at
** Branch linked: lp:ubuntu/dapper-security/cpio
** Branch linked: lp:ubuntu/feisty-security/cpio
** Branch linked: lp:ubuntu/gutsy-security/cpio
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a
** Changed in: fedora
Status: Unknown = Confirmed
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
** Changed in: fedora
Importance: Undecided = Unknown
Bugwatch: None = Red Hat Bugzilla #280961
Status: New = Unknown
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of
This bug was fixed in the package cpio - 2.8-1ubuntu2.2
---
cpio (2.8-1ubuntu2.2) gutsy-security; urgency=low
* SECURITY UPDATE: Buffer overflow in the safer_name_suffix function in GNU
cpio has unspecified attack vectors and impact, resulting in a crashing
stack.
* patch
This bug was fixed in the package cpio - 2.6-17ubuntu0.7.04.1
---
cpio (2.6-17ubuntu0.7.04.1) feisty-security; urgency=low
* SECURITY UPDATE: Buffer overflow in the safer_name_suffix function in GNU
cpio has unspecified attack vectors and impact, resulting in a crashing
http://www.ubuntu.com/usn/usn-650-1
** Changed in: cpio (Ubuntu Dapper)
Status: Fix Committed = Fix Released
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is
** Changed in: cpio (Ubuntu Dapper)
Status: In Progress = Fix Committed
** Changed in: cpio (Ubuntu Feisty)
Status: In Progress = Fix Committed
** Changed in: cpio (Ubuntu Gutsy)
Status: In Progress = Fix Committed
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
This is fixed in Hardy, so closing the main task.
** Changed in: cpio (Ubuntu)
Status: In Progress = Fix Released
** Changed in: cpio (Ubuntu Dapper)
Status: New = In Progress
** Changed in: cpio (Ubuntu Feisty)
Status: New = In Progress
** Changed in: cpio (Ubuntu Gutsy)
The 18 month support period for Edgy Eft 6.10 has reached it's end of
life. As a result, we are closing the Edgy Eft task. However, please
note that this report will remain open against the actively developed
release. Thank you for your continued support and help as we debug this
issue.
**
Fixed in Debian: DSA-1566-1
(http://www.debian.org/security/2008/dsa-1566)
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs
Has there been any progress on this bug?
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
It just needs to be checked and uploaded
** Changed in: cpio (Ubuntu)
Status: Triaged = In Progress
** Changed in: cpio (Ubuntu)
Assignee: (unassigned) = Stephan Hermann (shermann)
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You
Setting it back to Triaged.
** Changed in: cpio (Ubuntu)
Status: In Progress = Triaged
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for
** Changed in: cpio (Ubuntu)
Status: New = In Progress
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing
hardy cpio was merged by mvo
** Attachment removed: Hardy Merge .dsc
http://launchpadlibrarian.net/10318484/cpio_2.9-4ubuntu1.dsc
** Attachment removed: Hardy Merge .diff.gz
http://launchpadlibrarian.net/10318485/cpio_2.9-4ubuntu1.diff.gz
** Attachment removed: Hardy Merge .orig.tar.gz
** Attachment added: Hardy Merge .orig.tar.gz for cpio 2.9
http://launchpadlibrarian.net/10318486/cpio_2.9.orig.tar.gz
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs,
** Attachment added: Hardy Merge .dsc
http://launchpadlibrarian.net/10318484/cpio_2.9-4ubuntu1.dsc
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug
** Attachment added: Hardy Merge .diff.gz
http://launchpadlibrarian.net/10318485/cpio_2.9-4ubuntu1.diff.gz
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is the
@Daniel:
You were the last uploader, so it's normally your duty to do the next
merge ;)
Please don't work on it, I'm doing the merge and fixing this issue.
Thx,
\sh
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug
** Attachment added: debdiff to fix cve-2007-4476 for dapper cpio
http://launchpadlibrarian.net/10318760/cpio_2.6-10ubuntu0.3.debdiff
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of
Sorry Daniel, it wasn't you, p.u.c. bugged me, fabbione was the last one
;)
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
** Attachment added: debdiff to fix cve-2007-4476 for edgy cpio
http://launchpadlibrarian.net/10318793/cpio_2.6-17ubuntu0.6.10.1.debdiff
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member
** Attachment removed: debdiff to fix cve-2007-4476 for dapper cpio
http://launchpadlibrarian.net/10318760/cpio_2.6-10ubuntu0.3.debdiff
** Attachment added: debdiff to fix cve-2007-4476 for dapper cpio
http://launchpadlibrarian.net/10318786/cpio_2.6-10ubuntu0.3.debdiff
--
** Attachment added: debdiff to fix cve-2007-4476 for feisty cpio
http://launchpadlibrarian.net/10318804/cpio_2.6-17ubuntu0.6.10.1.debdiff
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a
** Attachment added: debdiff to fix cve-2007-4476 for gutsy cpio
http://launchpadlibrarian.net/10318934/cpio_2.8-1ubuntu2.1.debdiff
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-4476
--
[CVE-2007-4476] cpio is affected by this CVE as tar.
https://bugs.launchpad.net/bugs/161173
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
27 matches
Mail list logo