Maverick Chung and Qiaoyi Fang discovered that cpio incorrectly handled
certain pattern files. A remote attacker could use this issue to cause cpio
to crash, resulting in a denial of service, or possibly execute arbitrary
code.

References

ubuntu.com/security/CVE-2021-38185

ubuntu.com/security/notices/USN-5064-1

ubuntucve 1

nessus 38

openvas 22

oraclelinux 1

ubuntu 3

cloudfoundry 1

rocky 1

nvd 1

osv 6

amazon 1

photon 8

cvelist 1

redhat 6

suse 1

ibm 4

alpinelinux 1

cbl_mariner 2

redhatcve 1

cve 1

mageia 1

debiancve 1

githubexploit 1

almalinux 1

prion 1

veracode 1

debian 1

gentoo 1

avleonov 1

ubuntucve

CVE-2021-38185

2021-08-08 00:00:00

nessus

SUSE SLES12 Security Update : cpio (SUSE-SU-2021:2808-1)

2021-08-24 00:00:00

EulerOS Virtualization 2.9.1 : cpio (EulerOS-SA-2021-2749)

2021-11-17 00:00:00

Rocky Linux 8 : cpio (RLSA-2022:1991)

2023-11-06 00:00:00

openvas

Huawei EulerOS: Security Advisory for cpio (EulerOS-SA-2021-2681)

2021-11-12 00:00:00

Ubuntu: Security Advisory (USN-5064-1)

2021-09-09 00:00:00

Huawei EulerOS: Security Advisory for cpio (EulerOS-SA-2021-2654)

2021-11-12 00:00:00

oraclelinux

cpio security update

2022-05-17 00:00:00

ubuntu

GNU cpio vulnerability

2021-09-08 00:00:00

GNU cpio vulnerability

2022-01-27 00:00:00

GNU cpio vulnerability

2023-08-03 00:00:00

cloudfoundry

USN-5064-1: GNU cpio vulnerability | Cloud Foundry

2021-10-04 00:00:00

rocky

cpio security update

2022-05-10 06:43:49

nvd

CVE-2021-38185

2021-08-08 00:15:07

osv

cpio vulnerability

2023-08-03 13:30:12

Moderate: cpio security update

2022-05-10 06:43:49

Moderate: cpio security update

2022-05-10 06:43:49

amazon

Medium: cpio

2023-03-02 22:35:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-4.0-0089

2021-08-26 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0388

2021-09-03 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0432

2021-09-04 00:00:00

cvelist

CVE-2021-38185

2021-08-07 00:00:00

redhat

(RHSA-2022:1991) Moderate: cpio security update

2022-05-10 06:43:49

(RHSA-2022:5006) Important: Red Hat OpenShift Service Mesh 2.1.3 Containers security update

2022-06-13 12:38:39

(RHSA-2022:6526) Important: OpenShift Virtualization 4.11.0 Images security and bug fix update

2022-09-14 16:32:31

suse

Security update for cpio (important)

2021-08-16 00:00:00

ibm

Security Bulletin: IBM Sterling Connect:Direct for UNIX Certified Container is affected by arbitrary code executiondue to GNU cpio (CVE-2021-38185)

2022-08-01 10:01:49

Security Bulletin: IBM QRadar SIEM Application Framework Base Image is vulnerable to using components with Known Vulnerabilities

2022-10-25 15:02:36

Security Bulletin: IBM Sterling Connect:Direct for UNIX Certified Container is affected by multiple vulnerabilities in Red Hat Universal Base Image version 8.4-206.1626828523 and Binutils version 2.30-93

2022-03-14 20:12:12

alpinelinux

CVE-2021-38185

2021-08-08 00:15:07

cbl_mariner

CVE-2021-38185 affecting package cpio for versions less than 2.13-4

2022-06-03 17:54:03

CVE-2021-38185 affecting package cpio 2.13-3

2021-09-13 03:23:36

redhatcve

CVE-2021-38185

2021-08-09 20:19:57

cve

CVE-2021-38185

2021-08-08 00:15:07

mageia

Updated cpio packages fix security vulnerability

2021-09-23 07:49:29

debiancve

CVE-2021-38185

2021-08-08 00:15:07

githubexploit

Exploit for Integer Overflow or Wraparound in Gnu Cpio

2021-07-19 20:10:13

almalinux

Moderate: cpio security update

2022-05-10 06:43:49

prion

Integer overflow

2021-08-08 00:15:00

veracode

Remote Code Execution (RCE)

2021-08-12 14:00:18

debian

[SECURITY] [DLA 3445-1] cpio security update

2023-06-04 20:12:22

gentoo

cpio: Arbitrary Code Execution

2024-07-01 00:00:00

avleonov

Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs

2022-12-30 18:03:13

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.8 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.2%

JSON

Related for OSV:USN-5064-1