CVE-2021-38185
Description
GNU cpio through 2.13 allows attackers to execute arbitrary code via a crafted pattern file, because of a dstring.c ds_fgetstr integer overflow that triggers an out-of-bounds heap write. NOTE: it is unclear whether there are common cases where the pattern file, associated with the -E option, is untrusted data.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
26.706
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2021:2686-1(SUSE Linux Enterprise Server 12-SP5 ) cpio-2.11-36.9.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2686-1(SUSE Linux Enterprise Server 12-SP5 ) cpio-debuginfo-2.11-36.9.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2686-1(SUSE Linux Enterprise Server 12-SP5 ) cpio-debugsource-2.11-36.9.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2686-1(SUSE Linux Enterprise Server 12-SP5 ) cpio-lang-2.11-36.9.1.noarch.rpm | Linux |
| SUSE-SU-2021:2808-1(SUSE Linux Enterprise Server 12-SP5 ) cpio-2.11-36.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2808-1(SUSE Linux Enterprise Server 12-SP5 ) cpio-debuginfo-2.11-36.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2808-1(SUSE Linux Enterprise Server 12-SP5 ) cpio-debugsource-2.11-36.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2808-1(SUSE Linux Enterprise Server 12-SP5 ) cpio-lang-2.11-36.15.1.noarch.rpm | Linux |
| a tool to manage archives of files (USN-5064-1) cpio_2.13+dfsg-2ubuntu0.3_i386.deb | Linux |
| a tool to manage archives of files (USN-5064-1) cpio_2.13+dfsg-2ubuntu0.3_amd64.deb | Linux |
| a tool to manage archives of files (USN-5064-1) cpio_2.13+dfsg-4ubuntu0.3_i386.deb | Linux |
| a tool to manage archives of files (USN-5064-1) cpio_2.13+dfsg-4ubuntu0.3_amd64.deb | Linux |
| a tool to manage archives of files (USN-5064-1) cpio_2.12+dfsg-6ubuntu0.18.04.4_i386.deb | Linux |
| a tool to manage archives of files (USN-5064-1) cpio_2.12+dfsg-6ubuntu0.18.04.4_amd64.deb | Linux |
| (RHSA-2022:1991) cpio security update cpio-2.12-11.el8.x86_64.rpm | Linux |
| (RHSA-2022:1991) cpio security update cpio-debugsource-2.12-11.el8.x86_64.rpm | Linux |
| cpio security update (RLSA-2022:1991) cpio-2.12-11.el8.x86_64.rpm | Linux |
| SUSE-SU-2021:2689-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) cpio-2.12-3.6.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2689-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) cpio-mt-2.12-3.6.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2689-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) cpio-lang-2.12-3.6.1.noarch.rpm | Linux |
| SUSE-SU-2021:2689-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) cpio-debuginfo-2.12-3.6.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2689-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) cpio-debugsource-2.12-3.6.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2689-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) cpio-mt-debuginfo-2.12-3.6.1.x86_64.rpm | Linux |
| (RHSA-2022:1991)Moderate: security update cpio-debuginfo-2.12-11.el8.x86_64.rpm | Linux |
| Cpio update (ELSA-2022-1991) cpio-2.12-11.el8.x86_64.rpm | Linux |
| Moderate: cpio security update cpio-2.12-11.el8.x86_64.rpm | Linux |
| cpio Security Update (ALAS2023-2023-021) cpio-2.13-13.amzn2023.0.2.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234