Download
| Alert*
oval:org.secpod.oval:def:70340
tar: GNU version of the tar archiving utility Several security issues were fixed in tar. oval:org.secpod.oval:def:70151 tar: GNU version of the tar archiving utility Several security issues were fixed in tar. oval:org.secpod.oval:def:89003270 This update for tar to version 1.27.1 fixes the following issues: tar 1.27.1 brings following changes * Sparse files with large data * No backticks in quoting * --owner and --group names and numbers * Support for POSIX ACLs, extended attributes and SELinux context. * Passing command line arguments ... oval:org.secpod.oval:def:1601722 pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers oval:org.secpod.oval:def:705850 tar: GNU version of the tar archiving utility Several security issues were fixed in tar. oval:org.secpod.oval:def:2001710 pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers. oval:org.secpod.oval:def:89000375 This update for tar fixes the following issues: Security issues fixed: - CVE-2019-9923: Fixed a denial of service while parsing certain archives with malformed extended headers in pax_decode_header . - CVE-2018-20482: Fixed a denial of service when the "--sparse" option mishandles file shrinkage dur ... oval:org.secpod.oval:def:2105370 pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers. oval:org.secpod.oval:def:89047405 This update for tar fixes the following issues: - CVE-2021-20193: Fixed a memory leak in read_header in list.c . - CVE-2019-9923: Fixed a null-pointer dereference in pax_decode_header in sparse.c . - CVE-2018-20482: Fixed infinite read loop in sparse_dump_region in sparse.c . - Update to GNU tar 1.3 ... oval:org.secpod.oval:def:68284 tar: GNU version of the tar archiving utility Several security issues were fixed in tar. oval:org.secpod.oval:def:1701349 pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers |