Secunia Security Advisory - Ubuntu has issued an update for cpio. This fixes a vulnerability, which potentially can be exploited by malicious, local users to cause a DoS (Denial of Service).
4e6d676e6b8aa7b49cd1a801282701347b76adb6e6c1c404389a95da0b585284
TITLE:
Ubuntu update for cpio
SECUNIA ADVISORY ID:
SA18280
VERIFY ADVISORY:
http://secunia.com/advisories/18280/
CRITICAL:
Not critical
IMPACT:
DoS
WHERE:
Local system
OPERATING SYSTEM:
Ubuntu Linux 4.10
http://secunia.com/product/4491/
Ubuntu Linux 5.04
http://secunia.com/product/5036/
Ubuntu Linux 5.10
http://secunia.com/product/6606/
DESCRIPTION:
Ubuntu has issued an update for cpio. This fixes a vulnerability,
which potentially can be exploited by malicious, local users to cause
a DoS (Denial of Service).
For more information:
SA18251
SOLUTION:
Apply updated packages.
-- Ubuntu 4.10 (Warty Warthog) --
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu0.3.diff.gz
Size/MD5: 27861 30d956e1d7c6169dd30bcf4f85e198ec
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu0.3.dsc
Size/MD5: 551 9cca8af73c1661423f75b5ca39dc3fd5
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5.orig.tar.gz
Size/MD5: 185480 e02859af1bbbbd73fcbf757acb57e0a4
amd64 architecture (Athlon64, Opteron, EM64T Xeon)
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu0.3_amd64.deb
Size/MD5: 68856 253028eac0406c5742831edd9f7cc2e7
i386 architecture (x86 compatible Intel/AMD)
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu0.3_i386.deb
Size/MD5: 64370 96ef06af0acb7eba610bab20b6552aa8
powerpc architecture (Apple Macintosh G3/G4/G5)
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu0.3_powerpc.deb
Size/MD5: 67910 2b3012a5c0529d6589d779285455e444
-- Ubuntu 5.04 (Hoary Hedgehog) --
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu1.2.diff.gz
Size/MD5: 27858 6d167bf59160bb49a356ad63aaf46ddd
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu1.2.dsc
Size/MD5: 551 671b6542bb14aff13d27c5ff20e048e8
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5.orig.tar.gz
Size/MD5: 185480 e02859af1bbbbd73fcbf757acb57e0a4
amd64 architecture (Athlon64, Opteron, EM64T Xeon)
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu1.2_amd64.deb
Size/MD5: 68910 1fa1ee8b327076ac4f7ba78c4f31f46d
i386 architecture (x86 compatible Intel/AMD)
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu1.2_i386.deb
Size/MD5: 64192 a7fb45e72550bc1d5ec14bb073ffc000
powerpc architecture (Apple Macintosh G3/G4/G5)
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.1ubuntu1.2_powerpc.deb
Size/MD5: 67938 3128b5006e24b0ab36fe8658b27bd15e
-- Ubuntu 5.10 (Breezy Badger) --
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.2ubuntu1.1.diff.gz
Size/MD5: 27910 67535b38785a093b63e96989d15ce73b
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.2ubuntu1.1.dsc
Size/MD5: 551 4831459b57acf5981235835a47f9e91b
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5.orig.tar.gz
Size/MD5: 185480 e02859af1bbbbd73fcbf757acb57e0a4
amd64 architecture (Athlon64, Opteron, EM64T Xeon)
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.2ubuntu1.1_amd64.deb
Size/MD5: 70568 cb8fa678380262c7f36a5eca7f75a8bf
i386 architecture (x86 compatible Intel/AMD)
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.2ubuntu1.1_i386.deb
Size/MD5: 64630 882a2257d4658556bd0782f51ce49884
powerpc architecture (Apple Macintosh G3/G4/G5)
http://security.ubuntu.com/ubuntu/pool/main/c/cpio/cpio_2.5-1.2ubuntu1.1_powerpc.deb
Size/MD5: 68776 1d761237abc915aa6bdd3b5d7ad5e5f3
ORIGINAL ADVISORY:
http://www.ubuntulinux.org/usn/usn-234-1
OTHER REFERENCES:
SA18251:
http://secunia.com/advisories/18251/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------