Your submission was sent successfully! Close

CVE-2014-9112

Published: 2 December 2014

Heap-based buffer overflow in the process_copy_in function in GNU Cpio 2.11 allows remote attackers to cause a denial of service via a large block value in a cpio archive.

Priority

Medium

Status

Package Release Status
cpio
Launchpad, Ubuntu, Debian
lucid
Released (2.10-1ubuntu2.1)
precise
Released (2.11-7ubuntu3.1)
trusty
Released (2.11+dfsg-1ubuntu1.1)
upstream Needed

utopic
Released (2.11+dfsg-2ubuntu1.1)