[ubuntu/focal-updates] cpio 2.13+dfsg-2ubuntu0.4 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Mon Apr 29 11:28:15 UTC 2024
cpio (2.13+dfsg-2ubuntu0.4) focal-security; urgency=medium
* SECURITY UPDATE: Path traversal vulnerability
- debian/patches/CVE-2023-7207.patch: Create symlink placeholder
if --no-absolute-filenames was given and replace placeholders
after extraction.
- debian/patches/revert-CVE-2015-1197-handling.patch: Removed.
- CVE-2023-7207
Date: 2024-04-28 12:50:12.488563+00:00
Changed-By: Fabian Toepfer <fabian.toepfer at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/cpio/2.13+dfsg-2ubuntu0.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list