Control: tags -1 + patch Hi,
On Sat, Jan 23, 2016 at 12:24:48PM +0100, Salvatore Bonaccorso wrote: > Source: cpio > Version: 2.11-4 > Severity: important > Tags: security upstream > > Hi, > > the following vulnerability was published for cpio. > > CVE-2016-2037[0]: > out-of-bounds write with cpio 2.11 > > If you fix the vulnerability please also make sure to include the > CVE (Common Vulnerabilities & Exposures) id in your changelog entry. > > For further information see: > > [0] https://security-tracker.debian.org/tracker/CVE-2016-2037 A patch is now available at https://lists.gnu.org/archive/html/bug-cpio/2016-01/msg00005.html Regards, Salvatore
