Ubuntu
cpio package

Branches for Breezy

Name		Status	Last Modified	Last Commit
lp://staging/ubuntu/breezy/cpio		1 Development	2009-12-05 06:10:56 UTC 2009-12-05	3. * SECURITY UPDATE: Modify permissions... Author: Martin Pitt Revision Date: 2005-09-29 12:04:52 UTC * SECURITY UPDATE: Modify permissions of arbitrary files, path traversal. * copyin.c, copypass.c: Use fchmod() and fchown() before closing the output file instead of chmod() and chown() after closing it. This avoids exploiting this race condition with a hardlink attach to chmod/chown arbitrary files. [CAN-2005-1111] * copyin.c: Separate out path sanitizing to safer_name_suffix(): Apart from leading slashes, filter out ".." components from output file names if --no-absolute-filenames is given, to avoid path traversal. [CAN-2005-1229]
lp://staging/ubuntu/breezy-security/cpio		1 Development	2009-12-05 06:11:15 UTC 2009-12-05	4. * SECURITY UPDATE: Local buffer overf... Author: Martin Pitt Revision Date: 2006-01-02 17:59:57 UTC * SECURITY UPDATE: Local buffer overflow. * copyout.c, write_out_header(): Check for and abort on ascii_header buffer overflow that occurs with extreme values of file properties (like file sizes). * CVE-2005-4268