[ubuntu/focal-security] cpio 2.13+dfsg-2ubuntu0.4 (Accepted)

Fabian Toepfer fabian.toepfer at canonical.com
Mon Apr 29 10:21:21 UTC 2024

cpio (2.13+dfsg-2ubuntu0.4) focal-security; urgency=medium

  * SECURITY UPDATE: Path traversal vulnerability
    - debian/patches/CVE-2023-7207.patch: Create symlink placeholder
      if --no-absolute-filenames was given and replace placeholders
      after extraction.
    - debian/patches/revert-CVE-2015-1197-handling.patch: Removed.
    - CVE-2023-7207

Date: 2024-04-28 12:50:12.488563+00:00
Changed-By: Fabian Toepfer <fabian.toepfer at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Focal-changes mailing list