Scientific Linux Security Update : cpio on on SL4 i386/x86_64
Low Nessus Plugin ID 60163
SynopsisThe remote Scientific Linux host is missing a security update.
DescriptionA buffer overflow was found in cpio on 64-bit platforms. By tricking a user into adding a specially crafted large file to a cpio archive, a local attacker may be able to exploit this flaw to execute arbitrary code with the target user's privileges. (CVE-2005-4268)
SolutionUpdate the affected cpio package.