CVE-2021-38185

Related Files

Gentoo Linux Security Advisory 202407-07

Posted Jul 1, 2024

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202407-7 - A vulnerability has been discovered in cpio, which can lead to arbitrary code execution. Versions greater than or equal to 2.13-r1 are affected.

tags | advisory, arbitrary, code execution

systems | linux, gentoo

advisories | CVE-2016-2037, CVE-2019-14866, CVE-2021-38185

SHA-256 | e20c4abc5e7c436bdee6268fc5dfb6f62a3c64d05b62800a8a445c86432c78bc

Download | Favorite | View

Ubuntu Security Notice USN-5064-3

Posted Aug 4, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5064-3 - USN-5064-1 fixed a vulnerability in GNU. This update provides the corresponding update for Ubuntu 14.04 LTS. Maverick Chung and Qiaoyi Fang discovered that cpio incorrectly handled certain pattern files. A remote attacker could use this issue to cause cpio to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2021-38185

SHA-256 | 848d27ec0229bbed482d72d1c434ad927ab11faebfa5356ff55ec79046e7f471

Download | Favorite | View

Red Hat Security Advisory 2022-5006-01

Posted Jun 19, 2022

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-5006-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. This advisory covers the RPM packages for the release. Issues addressed include a traversal vulnerability.

tags | advisory

systems | linux, redhat

advisories | CVE-2018-25032, CVE-2021-25219, CVE-2021-3634, CVE-2021-3737, CVE-2021-38185, CVE-2021-3981, CVE-2021-4189, CVE-2021-43813, CVE-2022-1154, CVE-2022-1271, CVE-2022-1650, CVE-2022-23772, CVE-2022-23773, CVE-2022-23806, CVE-2022-24675, CVE-2022-24785, CVE-2022-28327, CVE-2022-29224, CVE-2022-29225, CVE-2022-29226, CVE-2022-29228, CVE-2022-31045

SHA-256 | 6f6ba67471416e8a7e06343894cacbc3dcadc86799322067063a37ae1ba3d122

Download | Favorite | View

Red Hat Security Advisory 2022-1991-01

Posted May 11, 2022

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-1991-01 - The cpio packages provide the GNU cpio utility for creating and extracting archives, or copying files from one place to another. Issues addressed include integer overflow and out of bounds write vulnerabilities.

tags | advisory, overflow, vulnerability

systems | linux, redhat

advisories | CVE-2021-38185

SHA-256 | 24a0cf7784baf59e62fa1e4f391e96a61f3b8c3c80212b5da1fd9457fef97e39

Download | Favorite | View

Ubuntu Security Notice USN-5064-2

Posted Jan 28, 2022

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5064-2 - USN-5064-1 fixed vulnerabilities in GNU cpio. This update provides the corresponding updates for Ubuntu 16.04 ESM. Maverick Chung and Qiaoyi Fang discovered that cpio incorrectly handled certain pattern files. A remote attacker could use this issue to cause cpio to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary, vulnerability

systems | linux, ubuntu

advisories | CVE-2021-38185

SHA-256 | dca19316cf7eca3e16b0999725db9e6e0898ebb5b48144f1e778715761f44a73

Download | Favorite | View

Ubuntu Security Notice USN-5064-1

Posted Sep 8, 2021

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5064-1 - Maverick Chung and Qiaoyi Fang discovered that cpio incorrectly handled certain pattern files. A remote attacker could use this issue to cause cpio to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2021-38185

SHA-256 | 1c3f208bd9baaf2903731af1a7d8c223e7ff4adb68fb8f365acbb430f4bb40f5

Download | Favorite | View