Bug number - 774669

Part of package: cpio.

Bug description:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
Debian Bug report logs -  #774669 cpio: CVE-2015-1197: directory traversal
Package:      cpio; Maintainer for cpio is Anibal Monsalve Salazar <anibal@debian.org>; Source for cpio is src:cpio (PTS, buildd, popcon).
Reported by: Alexander Cherepanov <cherepan@mccme.ru>
Date: Mon,  5 Jan 2015 21:54:01 UTC
Severity: normal
Tags: patch, security
Found in version cpio/2.11+dfsg-0.1
Fixed in version cpio/2.11+dfsg-4.1
Done: Moritz Muehlenhoff <jmm@debian.org>
Bug is archived. No further changes may be made.Forwarded to http://lists.gnu.org/archive/html/bug-cpio

All x-patch and x-diff attachments.

Patch	Author	Date
cpio-2.11+dfsg-4.1-nmu.diff	Moritz Mühlenhoff <jmm@inutil.org>	Thu, 5 Mar 2015 19:11:31 +0100

Original bug report here.