Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Heap-based buffer overflow in the process_copy_in function in GNU Cpio 2.11 allows remote attackers to cause a denial of service via a large block value in a cpio archive.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GNU Cpio‘list_file()’基于堆的缓冲区溢出漏洞
Vulnerability Description
GNU cpio是GNU计划开发的一套用于UNIX操作系统中的文件备份工具,也是一种文件格式。该工具支持从cpio或tar格式的归档包中存入和读取文件。 GNU Cpio 2.11版本的‘process_copy_in’函数中存在基于堆的缓冲区溢出漏洞。远程攻击者可借助cpio归档中的超大‘block’值利用该漏洞造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A