Re: CVE Request: cpio -- directory traversal

[Lyndon Nerenberg <lyndon () orthanc ca>]

On Jan 15, 2015, at 6:44 PM, Alexander Cherepanov <ch3root () openwall com> wrote:

> cpio is susceptible to a directory traversal vulnerability via symlinks.

This is not a bug.  It's doing exactly what you asked of it.

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail