author Eric Hameleers <>2019-11-20 23:21:44 +0100
committer Eric Hameleers <>2019-11-20 23:21:44 +0100
commit9616efdbb807c06ba9be6bea3087ef6e39f75c83 (patch)
tree321d3c9d3c38fa1df5775fa28d6951b918a9157a /
parent14a88e4ee227c59246f8fea29e2ea38ad6303877 (diff)
Remove '--no-absolute-filenames' from cpio invocations
Since cpio 2.13, this option strips '/' and '../' from symbolic and hard links during extraction of a cpio archive like our initramfs. This is implemented as a fix for CVE-2015-1197 but breaks the initrd. And leaving out this option does not have the adverse effect I always thought it would have... archive extraction is still done into the current directory and not in the filesystem root.
Diffstat (limited to '')
1 files changed, 1 insertions, 1 deletions
diff --git a/ b/
index c1559df..4af5ae5 100644
--- a/
+++ b/
@@ -411,7 +411,7 @@ extract_initrd() {
cd ${IMGDIR}
uncompressfs ${IMGFILE} \
- | cpio -i -d -H newc --no-absolute-filenames
+ | cpio -i -d -m -H newc
} # End of extract_initrd()
# Modify the extracted initrd and re-pack it: