Lucene search
RedHatRHSA-2005:080HistoryFeb 18, 2005 - 12:00 a.m.
(RHSA-2005:080) cpio security update
2005-02-1800:00:00
access.redhat.com
11
0.0004 Low
EPSS
Percentile
15.7%
GNU cpio copies files into or out of a cpio or tar archive.
It was discovered that cpio uses a 0 umask when creating files using the -O
(archive) option. This creates output files with mode 0666 (all can read
and write) regardless of the user’s umask setting. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-1999-1572 to this issue.
All users of cpio should upgrade to this updated package, which resolves
this issue, and adds support for large files (> 2GB).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | ia64 | cpio | < 2.5-3e.3 | cpio-2.5-3e.3.ia64.rpm |
Related
redhat
redhat
(RHSA-2005:073) cpio security update
2005-02-15 00:00:00
(RHSA-2005:806) cpio security update
2005-11-10 00:00:00
nessus
nessus
Debian DSA-664-1 : cpio - broken file permissions
2005-02-03 00:00:00
Ubuntu 4.10 : cpio vulnerability (USN-75-1)
2006-01-15 00:00:00
RHEL 3 : cpio (RHSA-2005:080)
2005-02-18 00:00:00
ubuntu
ubuntu
cpio vulnerability
2005-02-04 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-664-1)
2008-01-17 00:00:00
Ubuntu: Security Advisory (USN-75-1)
2022-08-26 00:00:00
Debian Security Advisory DSA 664-1 (cpio)
2008-01-17 00:00:00
debiancve
debiancve
CVE-1999-1572
2005-01-29 05:00:00
cvelist
cvelist
CVE-1999-1572
2005-01-29 05:00:00
ubuntucve
ubuntucve
CVE-1999-1572
1996-07-16 00:00:00
osv
osv
cpio - broken file permissions
2005-02-02 00:00:00
cve
cve
CVE-1999-1572
2005-01-29 05:00:00
debian
debian
[SECURITY] [DSA 664-1] New cpio packages fix insecure file permissions
2005-02-02 16:57:21
[SECURITY] [DSA 664-1] New cpio packages fix insecure file permissions
2005-02-02 16:57:21
centos
centos
cpio security update
2005-11-10 23:44:34
cert
cert
mod_python vulnerable to information disclosure via crafted URL
2005-02-21 00:00:00