oss-sec mailing list archives
Re: CVE request: out-of-bounds write with cpio 2.11
From: anarcat <anarcat () orangeseeds org>
Date: Fri, 29 Jan 2016 15:52:26 -0500
I can't actually reproduce this on Debian, which runs 2.11 all the way back to squeeze: (gdb) run -i < ../overflow.cpio Starting program: /bin/cpio -i < ../overflow.cpio [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1". /bin/cpio: Malformed number0000000 /bin/cpio: warning: skipped 8 bytes of junk /bin/cpio: Substituting `.' for empty member name /bin/cpio: . not created: newer or same age version exists /bin/cpio: premature end of file [Inferior 1 (process 191) exited with code 02] Did i miss something? a. -- The United States is a nation of laws: badly written and randomly enforced. - Frank Zappa
Current thread:
- CVE request: out-of-bounds write with cpio 2.11 Gustavo Grieco (Jan 19)
- Re: CVE request: out-of-bounds write with cpio 2.11 Hanno Böck (Jan 19)
- Re: CVE request: out-of-bounds write with cpio 2.11 Gustavo Grieco (Jan 19)
- Re: CVE request: out-of-bounds write with cpio 2.11 cve-assign (Jan 22)
- Re: CVE request: out-of-bounds write with cpio 2.11 anarcat (Jan 29)
- Re: Re: CVE request: out-of-bounds write with cpio 2.11 Gustavo Grieco (Jan 29)
- Re: CVE request: out-of-bounds write with cpio 2.11 Gustavo Grieco (Feb 12)
- Re: CVE request: out-of-bounds write with cpio 2.11 Hanno Böck (Jan 19)