File _patchinfo of Package patchinfo.4077
<patchinfo incident="4077"> <issue id="963448" tracker="bnc">VUL-1: CVE-2016-2037: cpio: out of bounds write</issue> <issue id="1020108" tracker="bnc">cpio -H crc shows checksum errors for files greater than 32MB</issue> <issue id="2016-2037" tracker="cve" /> <category>security</category> <rating>moderate</rating> <packager>kstreitova</packager> <description> This update for cpio fixes two issues. This security issue was fixed: - CVE-2016-2037: The cpio_safer_name_suffix function in util.c in cpio allowed remote attackers to cause a denial of service (out-of-bounds write) via a crafted cpio file (bsc#963448). This non-security issue was fixed: - bsc#1020108: Always use 32 bit CRC to prevent checksum errors for files greater than 32MB </description> <summary>Security update for cpio</summary> </patchinfo>
