2460785 – (CVE-2026-35358) CVE-2026-35358 rust-coreutils: cp: semantic loss and potential denial of service with -R via device node stream reading

Bug 2460785 (CVE-2026-35358) - CVE-2026-35358 rust-coreutils: cp: semantic loss and potential denial of service with -R via device node stream reading

Summary: CVE-2026-35358 rust-coreutils: cp: semantic loss and potential denial of serv...

Keywords:
Status:	NEW
Alias:	CVE-2026-35358
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2461652 2461653
Blocks:
TreeView+	depends on / blocked

Reported:	2026-04-22 17:02 UTC by OSIDB Bzimport
Modified:	2026-04-24 19:32 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-04-22 17:02:33 UTC

The cp utility in uutils coreutils, when performing recursive copies (-R), incorrectly treats character and block device nodes as stream sources rather than preserving them. Because the implementation reads bytes into regular files at the destination instead of using mknod, device semantics are destroyed (e.g., /dev/null becomes a regular file). This behavior can lead to runtime denial of service through disk exhaustion or process hangs when reading from unbounded device nodes.

Note You need to log in before you can comment on or make changes to this bug.