Описание
Security update for cpio
This update for cpio fixes the following issues:
- Fixed cpio not extracting correctly when using --no-absolute-filenames option the security fix for CVE-2023-7207 (bsc#1218571, bsc#1219238)
Список пакетов
Container bci/bci-init:15.5
cpio-2.13-150400.3.6.1
Container bci/bci-init:15.7
cpio-2.13-150400.3.6.1
Container bci/bci-init:latest
cpio-2.13-150400.3.6.1
Container bci/bci-sle15-kernel-module-devel:15.5
cpio-2.13-150400.3.6.1
Container bci/bci-sle15-kernel-module-devel:15.7
cpio-2.13-150400.3.6.1
Container bci/bci-sle15-kernel-module-devel:latest
cpio-2.13-150400.3.6.1
Container bci/kiwi:latest
cpio-2.13-150400.3.6.1
Container bci/openjdk-devel:11
cpio-2.13-150400.3.6.1
Container bci/openjdk-devel:17
cpio-2.13-150400.3.6.1
Container bci/openjdk-devel:latest
cpio-2.13-150400.3.6.1
Container rancher/elemental-teal-rt/5.4:latest
cpio-2.13-150400.3.6.1
Container rancher/elemental-teal/5.4:latest
cpio-2.13-150400.3.6.1
Container rancher/seedimage-builder:latest
cpio-2.13-150400.3.6.1
Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest
cpio-2.13-150400.3.6.1
Container suse/ltss/sle15.4/bci-base:latest
cpio-2.13-150400.3.6.1
Container suse/ltss/sle15.5/sle15:latest
cpio-2.13-150400.3.6.1
Container suse/manager/4.3/proxy-httpd:latest
cpio-2.13-150400.3.6.1
Container suse/manager/4.3/proxy-salt-broker:latest
cpio-2.13-150400.3.6.1
Container suse/manager/5.0/x86_64/proxy-httpd:latest
cpio-2.13-150400.3.6.1
Container suse/manager/5.0/x86_64/proxy-salt-broker:latest
cpio-2.13-150400.3.6.1
Container suse/manager/5.0/x86_64/server-hub-xmlrpc-api:latest
cpio-2.13-150400.3.6.1
Container suse/manager/5.0/x86_64/server:latest
cpio-2.13-150400.3.6.1
Container suse/pcp:latest
cpio-2.13-150400.3.6.1
Container suse/sle-micro-rancher/5.3:latest
cpio-2.13-150400.3.6.1
Container suse/sle-micro-rancher/5.4:latest
cpio-2.13-150400.3.6.1
Container suse/sle-micro/5.3/toolbox:latest
cpio-2.13-150400.3.6.1
Container suse/sle-micro/5.4/toolbox:latest
cpio-2.13-150400.3.6.1
Container suse/sle-micro/5.5/toolbox:latest
cpio-2.13-150400.3.6.1
Container suse/sle-micro/5.5:latest
cpio-2.13-150400.3.6.1
Container suse/sle-micro/base-5.5:latest
cpio-2.13-150400.3.6.1
Container suse/sle-micro/kvm-5.5:latest
cpio-2.13-150400.3.6.1
Container suse/sle-micro/rt-5.5:latest
cpio-2.13-150400.3.6.1
Container suse/sle15:15.5
cpio-2.13-150400.3.6.1
Container suse/sle15:15.6
cpio-2.13-150400.3.6.1
Container suse/sle15:15.7
cpio-2.13-150400.3.6.1
Container suse/sles/15.6/libguestfs-tools:1.1.1
cpio-2.13-150400.3.6.1
Container suse/sles/15.6/virt-handler:1.1.1
cpio-2.13-150400.3.6.1
Container suse/sles/15.6/virt-launcher:1.1.1
cpio-2.13-150400.3.6.1
Container suse/sles/15.7/libguestfs-tools:1.4.0
cpio-2.13-150400.3.6.1
Container suse/sles/15.7/virt-handler:1.4.0
cpio-2.13-150400.3.6.1
Container suse/sles/15.7/virt-launcher:1.4.0
cpio-2.13-150400.3.6.1
Container trento/trento-wanda:latest
cpio-2.13-150400.3.6.1
Container trento/trento-web:latest
cpio-2.13-150400.3.6.1
Image SLES15-SP4-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-CHOST-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-CHOST-BYOS-Aliyun
cpio-2.13-150400.3.6.1
Image SLES15-SP4-CHOST-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-CHOST-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-CHOST-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-CHOST-BYOS-SAP-CCloud
cpio-2.13-150400.3.6.1
Image SLES15-SP4-HPC-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-HPC-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-HPC-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-HPC-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-HPC-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-HPC-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Hardened-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Hardened-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Hardened-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Hardened-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Server-4-3
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Server-4-3-Azure-llc
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Server-4-3-Azure-ltd
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Server-4-3-EC2-llc
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Manager-Server-4-3-EC2-ltd
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-3
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-3-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-3-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-3-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-3-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-3-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-4
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-4-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-4-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-4-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-4-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-4-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-Micro-5-4-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Azure-LI-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Hardened
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Hardened-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Hardened-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAP-Hardened-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAPCAL
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAPCAL-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAPCAL-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SAPCAL-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SUSE-Rancher-Setup-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP4-SUSE-Rancher-Setup-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Azure-3P
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Azure-Basic
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Azure-Standard
cpio-2.13-150400.3.6.1
Image SLES15-SP5-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-CHOST-BYOS-Aliyun
cpio-2.13-150400.3.6.1
Image SLES15-SP5-CHOST-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-CHOST-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-CHOST-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-CHOST-BYOS-GDC
cpio-2.13-150400.3.6.1
Image SLES15-SP5-CHOST-BYOS-SAP-CCloud
cpio-2.13-150400.3.6.1
Image SLES15-SP5-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-HPC-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-HPC-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-HPC-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-HPC-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Hardened-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Hardened-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Hardened-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Server-5-0
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Server-5-0-Azure-llc
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Server-5-0-Azure-ltd
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Server-5-0-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Server-5-0-EC2-llc
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Manager-Server-5-0-EC2-ltd
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Micro-5-5
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Micro-5-5-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Micro-5-5-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Micro-5-5-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Micro-5-5-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Micro-5-5-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Micro-5-5-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-Micro-5-5-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Azure-3P
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Hardened-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAP-Hardened-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAPCAL-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAPCAL-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP5-SAPCAL-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6
cpio-2.13-150400.3.6.1
Image SLES15-SP6-Azure-Basic
cpio-2.13-150400.3.6.1
Image SLES15-SP6-Azure-Standard
cpio-2.13-150400.3.6.1
Image SLES15-SP6-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP6-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-CHOST-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP6-CHOST-BYOS-Aliyun
cpio-2.13-150400.3.6.1
Image SLES15-SP6-CHOST-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-CHOST-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-CHOST-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-CHOST-BYOS-GDC
cpio-2.13-150400.3.6.1
Image SLES15-SP6-CHOST-BYOS-SAP-CCloud
cpio-2.13-150400.3.6.1
Image SLES15-SP6-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-EC2-ECS-HVM
cpio-2.13-150400.3.6.1
Image SLES15-SP6-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-HPC
cpio-2.13-150400.3.6.1
Image SLES15-SP6-HPC-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-HPC-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP6-HPC-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-HPC-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-HPC-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-HPC-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-HPC-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-Hardened-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP6-Hardened-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-Hardened-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-Hardened-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Azure-LI-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Hardened
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Hardened-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Hardened-BYOS
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Hardened-BYOS-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Hardened-BYOS-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Hardened-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAP-Hardened-GCE
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAPCAL
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAPCAL-Azure
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAPCAL-EC2
cpio-2.13-150400.3.6.1
Image SLES15-SP6-SAPCAL-GCE
cpio-2.13-150400.3.6.1
Image proxy-httpd-image
cpio-2.13-150400.3.6.1
Image proxy-salt-broker-image
cpio-2.13-150400.3.6.1
Image server-hub-xmlrpc-api-image
cpio-2.13-150400.3.6.1
Image server-image
cpio-2.13-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
cpio-2.13-150400.3.6.1
cpio-lang-2.13-150400.3.6.1
cpio-mt-2.13-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
cpio-2.13-150400.3.6.1
cpio-lang-2.13-150400.3.6.1
cpio-mt-2.13-150400.3.6.1
SUSE Linux Enterprise Server 15 SP4-LTSS
cpio-2.13-150400.3.6.1
cpio-lang-2.13-150400.3.6.1
cpio-mt-2.13-150400.3.6.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
cpio-2.13-150400.3.6.1
cpio-lang-2.13-150400.3.6.1
cpio-mt-2.13-150400.3.6.1
SUSE Manager Proxy 4.3
cpio-2.13-150400.3.6.1
cpio-lang-2.13-150400.3.6.1
cpio-mt-2.13-150400.3.6.1
SUSE Manager Server 4.3
cpio-2.13-150400.3.6.1
cpio-lang-2.13-150400.3.6.1
cpio-mt-2.13-150400.3.6.1
Ссылки
- Link for SUSE-SU-2024:0305-2
- E-Mail link for SUSE-SU-2024:0305-2
- SUSE Security Ratings
- SUSE Bug 1218571
- SUSE Bug 1219238
- SUSE CVE CVE-2023-7207 page
Описание
Debian's cpio contains a path traversal vulnerability. This issue was introduced by reverting CVE-2015-1197 patches which had caused a regression in --no-absolute-filenames. Upstream has since provided a proper fix to --no-absolute-filenames.
Затронутые продукты
Container bci/bci-init:15.5:cpio-2.13-150400.3.6.1
Container bci/bci-init:15.7:cpio-2.13-150400.3.6.1
Container bci/bci-init:latest:cpio-2.13-150400.3.6.1
Container bci/bci-sle15-kernel-module-devel:15.5:cpio-2.13-150400.3.6.1
Ссылки
- CVE-2023-7207
- SUSE Bug 1218571