• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

CPIO Archiver Local Insecure File Creation Vulnerability

Solution:
The vendor has released an upgrade dealing with this issue.

Ubuntu linux has released an advisory (USN-75-1) dealing with this issue. Please see the referenced advisory for more information.

Debian linux has released an advisory dealing with this issue. Please see the referenced advisory for more information.

Mandrake has released an advisory (MDKSA-2005:032) to address this issue. Please see the attached Mandrake advisory for details on obtaining and applying fixes. Update (02/12/05): Mandrake has re-released advisory MDKSA-2005:032 as MDKSA-2005:032-1 to correct a problem (they would not install with rpmdrake) with fixes for Mandrake 10.1. See the references section.

Trustix has released advisory TSLSA-2005-0003 to address various issues in multiple products. Please see the referenced advisory for more information.

Red Hat has released advisory RHSA-2005:080-06 to address this issue. Please see the advisory in Web references for more information.

Silicon Graphics has released advisory 20050204-01-U dealing with this and other issues for their Advanced Linux Environment packages. Please see the referenced advisories for more information.

Turbolinux has released advisory TLSA-2005-30 to address this issue. Please see the referenced advisory for more information.

Conectiva has released security advisory CLSA-2005:1002 addressing this issue. Please see the referenced advisory for details on obtaining and applying the appropriate updates.

Avaya has released advisory ASA-2005-212 to indicate that Avaya CVLAN and Integrated Management products are vulnerable to this issue. Customers are advised to apply patches supplied by vendors of the underlying operating systems. Please see the referenced advisory for more information.

RedHat has released security advisory RHSA-2005:806-8 addressing this issue for their Enterprise and Advanced Workstation editions. Users are advised to see the referenced Web advisory for further information.


GNU cpio 1.0

• GNU cpio 2.6
  http://ftp.gnu.org/gnu/cpio/cpio-2.6.tar.gz

GNU cpio 1.1

• GNU cpio 2.6
  http://ftp.gnu.org/gnu/cpio/cpio-2.6.tar.gz

GNU cpio 1.2

• GNU cpio 2.6
  http://ftp.gnu.org/gnu/cpio/cpio-2.6.tar.gz

Turbolinux Turbolinux Server 10.0

• TurboLinux cpio-2.5-4.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/up dates/RPMS/cpio-2.5-4.i586.rpm


• TurboLinux cpio-debug-2.5-4.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/up dates/RPMS/cpio-debug-2.5-4.i586.rpm