| Errata ID | 439 |
|---|---|
| Date | 2016-06-29 |
| Source package | cpio |
| Fixed in version | 2.11-4.25.201606131210 |
| Description | This update addresses the following issues: * A buffer overflow in cpio allows the execution of arbitrary code or denial of service if a malformed CPIO archive is opened (CVE-2014-9112) * Out-of-bounds write (CVE-2016-2037) |
| Additional notes | |
| CVE ID | CVE-2014-9112 CVE-2016-2037 |
| UCS Bug number | #37294 |
