Errata overview
Errata ID 439
Date 2016-06-29
Source package cpio
Fixed in version 2.11-4.25.201606131210
This update addresses the following issues:
* A buffer overflow in cpio allows the execution of arbitrary code or denial
  of service if a malformed CPIO archive is opened (CVE-2014-9112)
* Out-of-bounds write (CVE-2016-2037)
Additional notes
CVE ID CVE-2014-9112
UCS Bug number #37294