[ubuntu/gutsy-security] cpio_2.8-1ubuntu2.2_hppa_translations.tar.gz, cpio_2.8-1ubuntu2.2_powerpc_translations.tar.gz, cpio, cpio_2.8-1ubuntu2.2_lpia_translations.tar.gz, cpio_2.8-1ubuntu2.2_i386_translations.tar.gz, cpio_2.8-1ubuntu2.2_amd64_translations.tar.gz, cpio_2.8-1ubuntu2.2_ia64_translations.tar.gz, cpio_2.8-1ubuntu2.2_sparc_translations.tar.gz 2.8-1ubuntu2.2 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Thu Oct 2 18:55:18 BST 2008
cpio (2.8-1ubuntu2.2) gutsy-security; urgency=low
* SECURITY UPDATE: Buffer overflow in the safer_name_suffix function in GNU
cpio has unspecified attack vectors and impact, resulting in a "crashing
stack."
* patch paxnames.c to correct an allocation weakness in safer_name_suffix()
which could lead to a crash. Thanks to Stephan Hermann
* References:
CVE-2007-4476
LP: #161173
Date: Mon, 29 Sep 2008 16:58:13 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Core developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/gutsy/+source/cpio/2.8-1ubuntu2.2
-------------- next part --------------
Format: 1.7
Date: Mon, 29 Sep 2008 16:58:13 -0500
Source: cpio
Binary: cpio
Architecture: amd64_translations amd64 hppa_translations hppa i386_translations i386 ia64_translations ia64 lpia_translations lpia powerpc_translations powerpc source sparc_translations sparc
Version: 2.8-1ubuntu2.2
Distribution: gutsy-security
Urgency: low
Maintainer: Ubuntu Core developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description:
cpio - GNU cpio -- a program to manage archives of files
Changes:
cpio (2.8-1ubuntu2.2) gutsy-security; urgency=low
.
* SECURITY UPDATE: Buffer overflow in the safer_name_suffix function in GNU
cpio has unspecified attack vectors and impact, resulting in a "crashing
stack."
* patch paxnames.c to correct an allocation weakness in safer_name_suffix()
which could lead to a crash. Thanks to Stephan Hermann
* References:
CVE-2007-4476
LP: #161173
Files:
1a22d0616279aa82e6f4e257bd3df974 116028 utils important cpio_2.8-1ubuntu2.2_amd64.deb
ee43e809837f0d5db44674491387be79 171689 raw-translations - cpio_2.8-1ubuntu2.2_amd64_translations.tar.gz
0a0b1e154e8a83e0719b86002c837d70 123168 utils important cpio_2.8-1ubuntu2.2_hppa.deb
2f397b3f988a54d892a7566db836bcff 171711 raw-translations - cpio_2.8-1ubuntu2.2_hppa_translations.tar.gz
e4ef21359c746b204c3727deee719e38 107668 utils important cpio_2.8-1ubuntu2.2_i386.deb
64b430c10d39689e8cf01d41bc1c6fac 171704 raw-translations - cpio_2.8-1ubuntu2.2_i386_translations.tar.gz
a981f20a418d3858e8e92f63f4b898f5 152266 utils important cpio_2.8-1ubuntu2.2_ia64.deb
605e8a9bdc6f995f24b445e01aa194a7 171706 raw-translations - cpio_2.8-1ubuntu2.2_ia64_translations.tar.gz
5b9aa00bbea6ddf6518feb6818b733aa 107782 utils important cpio_2.8-1ubuntu2.2_lpia.deb
15f03c9cb4b16e995799d023f4c363c9 171703 raw-translations - cpio_2.8-1ubuntu2.2_lpia_translations.tar.gz
98b1fe38188f5455e1bf954ab7885fc2 119036 utils important cpio_2.8-1ubuntu2.2_powerpc.deb
2c6479291efbd952226582b543fe85e3 171694 raw-translations - cpio_2.8-1ubuntu2.2_powerpc_translations.tar.gz
565858b26f82dc113973769944ad1690 756 utils important cpio_2.8-1ubuntu2.2.dsc
2e49f657e658d3625da48fb7a871b1a1 9309 utils important cpio_2.8-1ubuntu2.2.diff.gz
0054e1d76985bc0291ced0ecc1537fc0 109594 utils important cpio_2.8-1ubuntu2.2_sparc.deb
10a87c8f9ee5fc8c537544e20353ea44 171711 raw-translations - cpio_2.8-1ubuntu2.2_sparc_translations.tar.gz
Launchpad-Bugs-Fixed: 161173
Original-Maintainer: Clint Adams <schizo at debian.org>
More information about the gutsy-changes
mailing list