Lucene search
GoogleOSV:DSA-664-1HistoryFeb 02, 2005 - 12:00 a.m.
cpio - broken file permissions
2005-02-0200:00:00
Google
osv.dev
9
0.0004 Low
EPSS
Percentile
15.7%
It has been discovered, that cpio, a program to manage archives of
files, creates output files with -O and -F with broken permissions due
to a reset zero umask which allows local users to read or overwrite
those files.
For the stable distribution (woody) this problem has been fixed in
version 2.4.2-39woody1.
For the unstable distribution (sid) this problem will be fixed soon.
We recommend that you upgrade your cpio package.
References
Related
redhat
redhat
(RHSA-2005:073) cpio security update
2005-02-15 00:00:00
(RHSA-2005:080) cpio security update
2005-02-18 00:00:00
(RHSA-2005:806) cpio security update
2005-11-10 00:00:00
nessus
nessus
Debian DSA-664-1 : cpio - broken file permissions
2005-02-03 00:00:00
Ubuntu 4.10 : cpio vulnerability (USN-75-1)
2006-01-15 00:00:00
Mandrake Linux Security Advisory : cpio (MDKSA-2005:032-1)
2005-02-11 00:00:00
ubuntu
ubuntu
cpio vulnerability
2005-02-04 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-664-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 664-1 (cpio)
2008-01-17 00:00:00
Ubuntu: Security Advisory (USN-75-1)
2022-08-26 00:00:00
debiancve
debiancve
CVE-1999-1572
2005-01-29 05:00:00
cve
cve
CVE-1999-1572
2005-01-29 05:00:00
debian
debian
[SECURITY] [DSA 664-1] New cpio packages fix insecure file permissions
2005-02-02 16:57:21
[SECURITY] [DSA 664-1] New cpio packages fix insecure file permissions
2005-02-02 16:57:21
cvelist
cvelist
CVE-1999-1572
2005-01-29 05:00:00
ubuntucve
ubuntucve
CVE-1999-1572
1996-07-16 00:00:00
centos
centos
cpio security update
2005-11-10 23:44:34
cert
cert
mod_python vulnerable to information disclosure via crafted URL
2005-02-21 00:00:00