High severity7.2NVD Advisory· Published Feb 6, 2014· Updated Jun 16, 2026
CVE-2010-4226
CVE-2010-4226
Description
cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10- osv-coords6 versionspkg:rpm/suse/build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/obs-service-source_validator&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/obs-service-source_validator&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/osc&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/osc&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
< 20171128-9.3.2+ 5 more
- (no CPE)range: < 20171128-9.3.2
- (no CPE)range: < 20171128-9.3.2
- (no CPE)range: < 0.7-9.3.1
- (no CPE)range: < 0.7-9.3.1
- (no CPE)range: < 0.162.0-15.3.1
- (no CPE)range: < 0.162.0-15.3.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.