Red Hat Customer Portal

Skip to main content

CVE-2005-4268

Impact:
Low
Public Date:
2005-11-07
Bugzilla:
229191: CVE-2005-4268 cpio large filesize buffer overflow

The MITRE CVE dictionary describes this issue as:

Buffer overflow in cpio 2.6-8.FC4 on 64-bit platforms, when creating a cpio archive, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a file whose size is represented by more than 8 digits.

Find out more about CVE-2005-4268 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue was addressed in Red Hat Enterprise Linux 4 via https://rhn.redhat.com/errata/RHSA-2007-0245.html and in Red Hat Enterprise Linux 3 via https://rhn.redhat.com/errata/RHSA-2010-0145.html.

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (cpio) RHSA-2007:0245 2007-05-01
Red Hat Enterprise Linux 3 (cpio) RHSA-2010:0145 2010-03-16