Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | < 1e2d3aa19c7962b9474b22893160cb460494c45f |