Lucene search
UbuntuUSN-75-1HistoryFeb 04, 2005 - 12:00 a.m.
cpio vulnerability
2005-02-0400:00:00
ubuntu.com
35
Releases
- Ubuntu 4.10
Details
Recently it was discovered that cpio created world-writeable files
when used in -o/–create mode with giving an output file (with -O).
This allowed any user to modify the created cpio archives. Now cpio
respects the current umask setting of the user.
Note: This vulnerability has already been fixed in a very old version
of cpio, but the fix was never ported to the current version.
Therefore the CAN number was assigned to the year 1999.
References
Related
ubuntucve
ubuntucve
CVE-1999-1572
1996-07-16 00:00:00
redhat
redhat
(RHSA-2005:080) cpio security update
2005-02-18 00:00:00
(RHSA-2005:073) cpio security update
2005-02-15 00:00:00
(RHSA-2005:806) cpio security update
2005-11-10 00:00:00
osv
osv
cpio - broken file permissions
2005-02-02 00:00:00
nessus
nessus
Debian DSA-664-1 : cpio - broken file permissions
2005-02-03 00:00:00
Ubuntu 4.10 : cpio vulnerability (USN-75-1)
2006-01-15 00:00:00
RHEL 3 : cpio (RHSA-2005:080)
2005-02-18 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-664-1)
2008-01-17 00:00:00
Ubuntu: Security Advisory (USN-75-1)
2022-08-26 00:00:00
Debian Security Advisory DSA 664-1 (cpio)
2008-01-17 00:00:00
debiancve
debiancve
CVE-1999-1572
2005-01-29 05:00:00
cvelist
cvelist
CVE-1999-1572
2005-01-29 05:00:00
cve
cve
CVE-1999-1572
2005-01-29 05:00:00
debian
debian
[SECURITY] [DSA 664-1] New cpio packages fix insecure file permissions
2005-02-02 16:57:21
[SECURITY] [DSA 664-1] New cpio packages fix insecure file permissions
2005-02-02 16:57:21
centos
centos
cpio security update
2005-11-10 23:44:34
cert
cert
mod_python vulnerable to information disclosure via crafted URL
2005-02-21 00:00:00