CVE-2014-9112
Published: 2 December 2014
Heap-based buffer overflow in the process_copy_in function in GNU Cpio 2.11 allows remote attackers to cause a denial of service via a large block value in a cpio archive.
Notes
Author | Note |
---|---|
mdeslaur | PoC: http://lcamtuf.coredump.cx/afl/vulns/lesspipe-cpio-bad-write.cpio |
Priority
Status
Package | Release | Status |
---|---|---|
cpio Launchpad, Ubuntu, Debian |
upstream |
Needed
|
lucid |
Released
(2.10-1ubuntu2.1)
|
|
precise |
Released
(2.11-7ubuntu3.1)
|
|
trusty |
Released
(2.11+dfsg-1ubuntu1.1)
|
|
utopic |
Released
(2.11+dfsg-2ubuntu1.1)
|
|
Patches: upstream: http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=746f3ff670dcfcdd28fcc990e79cd6fccc7ae48d upstream: http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=54d1c42ac2cb91389fca04a5018ad573e4ae265a upstream: http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=58df4f1b44a1142bba500f980fd26806413b1728 upstream: http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=fd262d116c4564c1796be9be2799619cf7785d07 upstream: http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=f6a8a2cbd2d5ca40ea94900b55b845dd5ca87328 vendor: https://www.debian.org/security/2014/dsa-3111 |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9112
- http://lcamtuf.coredump.cx/afl/vulns/lesspipe-cpio-bad-write.cpio
- https://marc.info/?l=oss-security&m=141702212015484&w=2
- http://lists.gnu.org/archive/html/bug-cpio/2014-11/msg00007.html
- https://ubuntu.com/security/notices/USN-2456-1
- NVD
- Launchpad
- Debian