SciLinux: CVE-2005-4268 Moderate: cpio SL3.x, SL4.x, SL5.x i386/x86_64
Summary
CVE-2010-0624 tar, cpio: Heap-based buffer overflow by expanding aspecially-crafted archiveA heap-based buffer overflow flaw was found in the way cpio expandedarchive files. If a user were tricked into expanding a specially-craftedarchive, it could cause the cpio executable to crash or executearbitrary code with the privileges of the user running cpio. (CVE-2010-0624)A stack-based buffer overflow flaw was found in the way cpio expandedlarge archive files. If a user expanded a specially-crafted archive, itcould cause the cpio executable to crash. This issue only affected64-bit platforms. (CVE-2005-4268) - SL3 OnlyA denial of service flaw was found in the way cpio expanded archivefiles. If a user expanded a specially-crafted archive, it could causethe cpio executable to crash. (CVE-2007-4476) - SL5 OnlySL 3.0.xSRPMS:cpio-2.5-6.RHEL3.src.rpmi386:cpio-2.5-6.RHEL3.i386.rpmx86_64:cpio-2.5-6.RHEL3.x86_64.rpm