Known Vulnerabilities for Cpio by Gnu

Listed below are 10 of the newest known vulnerabilities associated with "Cpio" by "Gnu".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2023-7216 json		5.3 - MEDIUM	2024-02-05	2024-03-26
CVE-2021-38185 json	GNU cpio through 2.13 allows attackers to execute arbitrary code via a crafted pattern file, because of a dstring.c ds_fgetst...	7.8 - HIGH	2021-08-08	2023-06-04
CVE-2019-14866 json	In all versions of cpio before 2.13 does not properly validate input files when generating TAR archives. When cpio is used to...	7.3 - HIGH	2020-01-07	2023-06-04
CVE-2016-2037 json		Not Provided	2016-02-22	2026-05-06
CVE-2015-1197 json		Not Provided	2015-02-19	2026-05-06
CVE-2014-9112 json		Not Provided	2014-12-02	2026-05-06
CVE-2010-4226 json		Not Provided	2014-02-06	2026-04-29
CVE-2010-0624 json		Not Provided	2010-03-15	2026-04-29
CVE-2005-4268 json		Not Provided	2005-12-15	2025-04-03
CVE-2005-1229 json		Not Provided	2005-05-02	2025-04-03

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version
Application	Gnu	Cpio	2.9
Application	Gnu	Cpio	2.8
Application	Gnu	Cpio	2.7
Application	Gnu	Cpio	2.6
Application	Gnu	Cpio	2.5.90
Application	Gnu	Cpio	2.5
Application	Gnu	Cpio	2.4-2
Application	Gnu	Cpio	2.13
Application	Gnu	Cpio	2.12
Application	Gnu	Cpio	2.11
Application	Gnu	Cpio	2.10
Application	Gnu	Cpio	1.3
Application	Gnu	Cpio	1.2
Application	Gnu	Cpio	1.1
Application	Gnu	Cpio	1.0
Application	Gnu	Cpio	-