[ubuntu/jammy-security] cpio 2.13+dfsg-7ubuntu0.1 (Accepted)

Fabian Toepfer fabian.toepfer at canonical.com
Mon Apr 29 10:21:20 UTC 2024


cpio (2.13+dfsg-7ubuntu0.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Path traversal vulnerability
    - debian/patches/CVE-2023-7207.patch: Create symlink placeholder
      if --no-absolute-filenames was given and replace placeholders
      after extraction.
    - debian/patches/revert-CVE-2015-1197-handling.patch: Removed.
    - CVE-2023-7207

Date: 2024-04-28 12:50:09.163214+00:00
Changed-By: Fabian Toepfer <fabian.toepfer at canonical.com>
https://launchpad.net/ubuntu/+source/cpio/2.13+dfsg-7ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the jammy-changes mailing list