Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2019:3059-1

Опубликовано: 25 нояб. 2019
Источник: suse-cvrf

Описание

Security update for cpio

This update for cpio fixes the following issues:

  • CVE-2019-14866: Fixed an improper validation of the values written in the header of a TAR file through the to_oct() function which could have led to unexpected TAR generation (bsc#1155199).

Список пакетов

Container bci/bci-init:15.3
cpio-2.12-3.3.1
Container bci/dotnet-aspnet:3.1
cpio-2.12-3.3.1
Container bci/dotnet-aspnet:5.0
cpio-2.12-3.3.1
Container bci/dotnet-aspnet:latest
cpio-2.12-3.3.1
Container bci/dotnet-runtime:3.1
cpio-2.12-3.3.1
Container bci/dotnet-runtime:5.0
cpio-2.12-3.3.1
Container bci/dotnet-runtime:latest
cpio-2.12-3.3.1
Container bci/dotnet-sdk:3.1
cpio-2.12-3.3.1
Container bci/dotnet-sdk:5.0
cpio-2.12-3.3.1
Container bci/dotnet-sdk:latest
cpio-2.12-3.3.1
Container bci/golang:1.16
cpio-2.12-3.3.1
Container bci/golang:1.17
cpio-2.12-3.3.1
Container bci/golang:latest
cpio-2.12-3.3.1
Container bci/node:12
cpio-2.12-3.3.1
Container bci/node:14
cpio-2.12-3.3.1
Container bci/nodejs:latest
cpio-2.12-3.3.1
Container bci/openjdk-devel:11
cpio-2.12-3.3.1
Container bci/openjdk:latest
cpio-2.12-3.3.1
Container bci/python:3
cpio-2.12-3.3.1
Container bci/ruby:latest
cpio-2.12-3.3.1
Container caasp/v4/389-ds:1.4.2
cpio-2.12-3.3.1
Container caasp/v4/busybox:1.34.1
cpio-2.12-3.3.1
Container caasp/v4/caasp-dex:2.16.0
cpio-2.12-3.3.1
Container caasp/v4/cert-exporter:2.3.0
cpio-2.12-3.3.1
Container caasp/v4/cilium-etcd-operator:2.0.5
cpio-2.12-3.3.1
Container caasp/v4/cilium-init:1.5.3
cpio-2.12-3.3.1
Container caasp/v4/cilium-operator:1.6.6
cpio-2.12-3.3.1
Container caasp/v4/cilium:1.6.6
cpio-2.12-3.3.1
Container caasp/v4/cloud-provider-openstack:1.15.0
cpio-2.12-3.3.1
Container caasp/v4/configmap-reload:0.3.0
cpio-2.12-3.3.1
Container caasp/v4/coredns:1.6.7
cpio-2.12-3.3.1
Container caasp/v4/curl:7.60.0
cpio-2.12-3.3.1
Container caasp/v4/etcd:3.4.13
cpio-2.12-3.3.1
Container caasp/v4/gangway:3.1.0
cpio-2.12-3.3.1
Container caasp/v4/grafana:7.5.12
cpio-2.12-3.3.1
Container caasp/v4/helm-tiller:2.16.12
cpio-2.12-3.3.1
Container caasp/v4/hyperkube:v1.17.17
cpio-2.12-3.3.1
Container caasp/v4/k8s-sidecar:0.1.75
cpio-2.12-3.3.1
Container caasp/v4/kube-state-metrics:1.9.3
cpio-2.12-3.3.1
Container caasp/v4/kubernetes-client:1.17.17
cpio-2.12-3.3.1
Container caasp/v4/kucero:1.3.0
cpio-2.12-3.3.1
Container caasp/v4/kured:1.3.0
cpio-2.12-3.3.1
Container caasp/v4/metrics-server:0.3.6
cpio-2.12-3.3.1
Container caasp/v4/prometheus-alertmanager:0.16.2
cpio-2.12-3.3.1
Container caasp/v4/prometheus-node-exporter:1.1.2
cpio-2.12-3.3.1
Container caasp/v4/prometheus-pushgateway:0.6.0
cpio-2.12-3.3.1
Container caasp/v4/prometheus-server:2.7.1
cpio-2.12-3.3.1
Container caasp/v4/rsyslog:8.39.0
cpio-2.12-3.3.1
Container caasp/v4/skuba-tooling:0.1.0
cpio-2.12-3.3.1
Container caasp/v4/test-update:beta
cpio-2.12-3.3.1
Container caasp/v4/velero-plugin-for-aws:1.0.1
cpio-2.12-3.3.1
Container caasp/v4/velero-plugin-for-gcp:1.0.1
cpio-2.12-3.3.1
Container caasp/v4/velero-plugin-for-microsoft-azure:1.0.1
cpio-2.12-3.3.1
Container caasp/v4/velero-restic-restore-helper:1.3.1
cpio-2.12-3.3.1
Container caasp/v4/velero:1.3.1
cpio-2.12-3.3.1
Container ses/6/cephcsi/cephcsi:latest
cpio-2.12-3.3.1
Container ses/6/rook/ceph:latest
cpio-2.12-3.3.1
Container ses/7.1/ceph/grafana:latest
cpio-2.12-3.3.1
Container ses/7.1/ceph/haproxy:latest
cpio-2.12-3.3.1
Container ses/7.1/ceph/keepalived:latest
cpio-2.12-3.3.1
Container ses/7.1/ceph/prometheus-alertmanager:latest
cpio-2.12-3.3.1
Container ses/7.1/ceph/prometheus-node-exporter:latest
cpio-2.12-3.3.1
Container ses/7.1/ceph/prometheus-server:latest
cpio-2.12-3.3.1
Container ses/7.1/ceph/prometheus-snmp_notifier:latest
cpio-2.12-3.3.1
Container ses/7.1/cephcsi/cephcsi:latest
cpio-2.12-3.3.1
Container ses/7.1/cephcsi/csi-attacher:v4.1.0
cpio-2.12-3.3.1
Container ses/7.1/cephcsi/csi-node-driver-registrar:v2.7.0
cpio-2.12-3.3.1
Container ses/7.1/cephcsi/csi-provisioner:v3.4.0
cpio-2.12-3.3.1
Container ses/7.1/cephcsi/csi-resizer:v1.7.0
cpio-2.12-3.3.1
Container ses/7.1/cephcsi/csi-snapshotter:v6.2.1
cpio-2.12-3.3.1
Container ses/7.1/rook/ceph:latest
cpio-2.12-3.3.1
Container ses/7/ceph/ceph:latest
cpio-2.12-3.3.1
Container ses/7/ceph/grafana:latest
cpio-2.12-3.3.1
Container ses/7/ceph/prometheus-alertmanager:latest
cpio-2.12-3.3.1
Container ses/7/ceph/prometheus-node-exporter:latest
cpio-2.12-3.3.1
Container ses/7/ceph/prometheus-server:latest
cpio-2.12-3.3.1
Container ses/7/cephcsi/cephcsi:latest
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-attacher:v2.1.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-attacher:v3.3.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-livenessprobe:v1.1.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-node-driver-registrar:v1.2.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-node-driver-registrar:v2.3.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-provisioner:v1.6.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-provisioner:v3.0.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-resizer:v0.4.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-resizer:v1.3.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-snapshotter:v2.1.0
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-snapshotter:v2.1.1
cpio-2.12-3.3.1
Container ses/7/cephcsi/csi-snapshotter:v4.2.0
cpio-2.12-3.3.1
Container ses/7/prometheus-webhook-snmp:latest
cpio-2.12-3.3.1
Container ses/7/rook/ceph:latest
cpio-2.12-3.3.1
Container suse/pcp:latest
cpio-2.12-3.3.1
Container suse/rmt-mariadb-client:latest
cpio-2.12-3.3.1
Container suse/rmt-mariadb:latest
cpio-2.12-3.3.1
Container suse/rmt-nginx:latest
cpio-2.12-3.3.1
Container suse/rmt-server:latest
cpio-2.12-3.3.1
Container suse/sle-micro-rancher/5.2:latest
cpio-2.12-3.3.1
Container suse/sle-micro/5.0/toolbox:latest
cpio-2.12-3.3.1
Container suse/sle-micro/5.1/toolbox:latest
cpio-2.12-3.3.1
Container suse/sle-micro/5.2/toolbox:latest
cpio-2.12-3.3.1
Container suse/sle15:15.0
cpio-2.12-3.3.1
Container suse/sle15:15.1
cpio-2.12-3.3.1
Container suse/sle15:15.2
cpio-2.12-3.3.1
Container suse/sle15:15.3
cpio-2.12-3.3.1
Container suse/sles/15.2/virt-api:0.38.1
cpio-2.12-3.3.1
Container suse/sles/15.2/virt-controller:0.38.1
cpio-2.12-3.3.1
Container suse/sles/15.2/virt-handler:0.38.1
cpio-2.12-3.3.1
Container suse/sles/15.2/virt-launcher:0.38.1
cpio-2.12-3.3.1
Container suse/sles/15.2/virt-operator:0.38.1
cpio-2.12-3.3.1
Container suse/sles/15.3/cdi-apiserver:1.37.1
cpio-2.12-3.3.1
Container suse/sles/15.3/cdi-cloner:1.37.1
cpio-2.12-3.3.1
Container suse/sles/15.3/cdi-controller:1.37.1
cpio-2.12-3.3.1
Container suse/sles/15.3/cdi-importer:1.37.1
cpio-2.12-3.3.1
Container suse/sles/15.3/cdi-operator:1.37.1
cpio-2.12-3.3.1
Container suse/sles/15.3/cdi-uploadproxy:1.37.1
cpio-2.12-3.3.1
Container suse/sles/15.3/cdi-uploadserver:1.37.1
cpio-2.12-3.3.1
Container suse/sles/15.3/libguestfs-tools:0.45.0
cpio-2.12-3.3.1
Container suse/sles/15.3/virt-api:0.45.0
cpio-2.12-3.3.1
Container suse/sles/15.3/virt-controller:0.45.0
cpio-2.12-3.3.1
Container suse/sles/15.3/virt-handler:0.45.0
cpio-2.12-3.3.1
Container suse/sles/15.3/virt-launcher:0.45.0
cpio-2.12-3.3.1
Container suse/sles/15.3/virt-operator:0.45.0
cpio-2.12-3.3.1
Container trento/trento-db:latest
cpio-2.12-3.3.1
Container trento/trento-runner:latest
cpio-2.12-3.3.1
Image SLES15-Azure-BYOS
cpio-2.12-3.3.1
Image SLES15-EC2-CHOST-HVM-BYOS
cpio-2.12-3.3.1
Image SLES15-EC2-HVM-BYOS
cpio-2.12-3.3.1
Image SLES15-GCE-BYOS
cpio-2.12-3.3.1
Image SLES15-OCI-BYOS
cpio-2.12-3.3.1
Image SLES15-SAP-Azure
cpio-2.12-3.3.1
Image SLES15-SAP-Azure-BYOS
cpio-2.12-3.3.1
Image SLES15-SAP-Azure-LI-BYOS-Production
cpio-2.12-3.3.1
Image SLES15-SAP-Azure-VLI-BYOS-Production
cpio-2.12-3.3.1
Image SLES15-SAP-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SAP-EC2-HVM-BYOS
cpio-2.12-3.3.1
Image SLES15-SAP-GCE
cpio-2.12-3.3.1
Image SLES15-SAP-GCE-BYOS
cpio-2.12-3.3.1
Image SLES15-SAP-OCI-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-Azure-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-Azure-HPC-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-CAP-Deployment-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP1-CAP-Deployment-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP1-CHOST-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP1-CHOST-BYOS-EC2
cpio-2.12-3.3.1
Image SLES15-SP1-CHOST-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP1-EC2-HPC-HVM-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-EC2-HVM-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-GCE-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-Manager-4-0-Azure-BYOS-Proxy
cpio-2.12-3.3.1
Image SLES15-SP1-Manager-4-0-Azure-BYOS-Server
cpio-2.12-3.3.1
Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Proxy
cpio-2.12-3.3.1
Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Server
cpio-2.12-3.3.1
Image SLES15-SP1-Manager-4-0-GCE-BYOS-Proxy
cpio-2.12-3.3.1
Image SLES15-SP1-Manager-4-0-GCE-BYOS-Server
cpio-2.12-3.3.1
Image SLES15-SP1-OCI-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-SAP-Azure
cpio-2.12-3.3.1
Image SLES15-SP1-SAP-Azure-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
cpio-2.12-3.3.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
cpio-2.12-3.3.1
Image SLES15-SP1-SAP-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP1-SAP-EC2-HVM-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-SAP-GCE
cpio-2.12-3.3.1
Image SLES15-SP1-SAP-GCE-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-SAP-OCI-BYOS
cpio-2.12-3.3.1
Image SLES15-SP1-SAPCAL-Azure
cpio-2.12-3.3.1
Image SLES15-SP1-SAPCAL-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP1-SAPCAL-GCE
cpio-2.12-3.3.1
Image SLES15-SP2-Azure-Basic
cpio-2.12-3.3.1
Image SLES15-SP2-Azure-Standard
cpio-2.12-3.3.1
Image SLES15-SP2-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP2-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP2-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP2-CAP-Deployment-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP2-CHOST-BYOS-Aliyun
cpio-2.12-3.3.1
Image SLES15-SP2-CHOST-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP2-CHOST-BYOS-EC2
cpio-2.12-3.3.1
Image SLES15-SP2-CHOST-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP2-EC2-ECS-HVM
cpio-2.12-3.3.1
Image SLES15-SP2-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP2-GCE
cpio-2.12-3.3.1
Image SLES15-SP2-HPC-Azure
cpio-2.12-3.3.1
Image SLES15-SP2-HPC-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP2-HPC-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP2-SAP-Azure
cpio-2.12-3.3.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
cpio-2.12-3.3.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
cpio-2.12-3.3.1
Image SLES15-SP2-SAP-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP2-SAP-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP2-SAP-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP2-SAP-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-CHOST-BYOS-Aliyun
cpio-2.12-3.3.1
Image SLES15-SP3-CHOST-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-CHOST-BYOS-EC2
cpio-2.12-3.3.1
Image SLES15-SP3-CHOST-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-CHOST-BYOS-SAP-CCloud
cpio-2.12-3.3.1
Image SLES15-SP3-EC2-ECS-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-HPC-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-HPC-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-HPC-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-HPC-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-Micro-5-1-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-Micro-5-1-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-Micro-5-2-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-Micro-5-2-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-Micro-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-SAP-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
cpio-2.12-3.3.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
cpio-2.12-3.3.1
Image SLES15-SP3-SAP-BYOS-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-SAP-BYOS-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-SAP-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-SAP-GCE
cpio-2.12-3.3.1
Image SLES15-SP3-SAPCAL-Azure
cpio-2.12-3.3.1
Image SLES15-SP3-SAPCAL-EC2-HVM
cpio-2.12-3.3.1
Image SLES15-SP3-SAPCAL-GCE
cpio-2.12-3.3.1
SUSE Linux Enterprise Module for Basesystem 15
cpio-2.12-3.3.1
cpio-lang-2.12-3.3.1
cpio-mt-2.12-3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP1
cpio-2.12-3.3.1
cpio-lang-2.12-3.3.1
cpio-mt-2.12-3.3.1

Ссылки

Описание

In all versions of cpio before 2.13 does not properly validate input files when generating TAR archives. When cpio is used to create TAR archives from paths an attacker can write to, the resulting archive may contain files with permissions the attacker did not have or in paths he did not have access to. Extracting those archives from a high-privilege user without carefully reviewing them may lead to the compromise of the system.

Затронутые продукты
Container bci/bci-init:15.3:cpio-2.12-3.3.1
Container bci/dotnet-aspnet:3.1:cpio-2.12-3.3.1
Container bci/dotnet-aspnet:5.0:cpio-2.12-3.3.1
Container bci/dotnet-aspnet:latest:cpio-2.12-3.3.1
Ссылки
Уязвимость SUSE-SU-2019:3059-1