Red Hat Bugzilla – Bug 1539685
CVE-2017-7516 cpio: --no-absolute-filenames bypass via symlinks
Last modified: 2018-04-05 10:03:57 EDT
Note: this bug is actually a duplicate of CVE-2015-1197. See CVE-2015-1197 for information regarding this.
A possible --no-absolute-filenames bypass while extracting a malicious archive in cpio. This allows for arbitrary file creation.
Created cpio tracking bugs for this issue:
Affects: fedora-all [bug 1539688]
Name: Cedric Buissart (Red Hat)
Isn't that a duplicate of CVE-2015-1197?
Sorry to be more specific, there are references in the MITRE entry at https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1197 .
Was posted on the cpio bug list, but I think it never got a reply. Several distributions seem to have then applied the patch from SuSE (at least in Debian, SUSE, Ubuntu, Mageia).
Hi Doran, hi Cedric
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7516 has been updated.
Ouch ... thanks! I had missed it :(
*** This bug has been marked as a duplicate of bug 1179773 ***