QSN-4176-1: cpio vulnerability
November 6, 2019
GNU cpio could be made to expose sensitive information if it received a specially crafted input.
Thomas Habets discovered that GNU cpio incorrectly handled certain inputs. An attacker could possibly use this issue to access sensitive information.
A general update will usually fix all issues, but to make sure, you can check your current version with:
If the current version you have is before 2.11+dfsg-5ubuntu1.1, run the following:
$ sudo apt-get install cpio