CVE-2007-4476

EPSS 12.2%

cpio - programming error

Published: 9/5/2007Modified: 4/28/2026

Description

Buffer overflow in the safer_name_suffix function in GNU tar has unspecified attack vectors and impact, resulting in a "crashing stack."

Affected packages (3)

Debian/cpiofrom 0, < 2.9-5
Debian/cpiofrom 0, < 2.6-18.1+etch1
Debian/tarfrom 0, < 1.18-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-4476