[Secure-testing-team] Bug#815965: cpio: reads out-of-bounds with cpio 2.11

Salvatore Bonaccorso Thu, 25 Feb 2016 22:36:34 -0800

Source: cpio
Version: 2.11-4
Severity: important
Tags: security upstream

Hi!


See http://seclists.org/oss-sec/2016/q1/440 for reproducers (isses can
be uncovered if compiled with ASAN). There is no CVE assigned yet for
those, and as well I think no patch from upstream.

Regards,
Salvatore

_______________________________________________
Secure-testing-team mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-team

[Secure-testing-team] Bug#815965: cpio: reads out-of-bounds with cpio 2.11

Reply via email to