Accepted:
OK: tar_1.15.1.orig.tar.gz
OK: tar_1.15.1-2ubuntu2.2.diff.gz
OK: tar_1.15.1-2ubuntu2.2.dsc
-> Component: main Section: base
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 28 Aug 2007 09:45:12 -0700
Source: tar
Binary: tar
Architecture: source
Version: 1.15.1-2ubuntu2.2
Distribution: dapper-security
Urgency: low
Maintainer: Bdale Garbee <[EMAIL PROTECTED]>
Changed-By: Kees Cook <[EMAIL PROTECTED]>
Description:
tar - GNU tar
Changes:
tar (1.15.1-2ubuntu2.2) dapper-security; urgency=low
.
* SECURITY UPDATE: directory traversal with malicious tar files.
* src/names.c: adjust dot dot checking, patched inline.
* References
CVE-2007-4131
Files:
6eefc042a8904f74897bec43aefcc5ce 574 base required tar_1.15.1-2ubuntu2.2.dsc
942e8c377c23bbc46f47a8e306472135 30265 base required
tar_1.15.1-2ubuntu2.2.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFG1FiDH/9LqRcGPm0RAhfOAKCGJhpEKmMO6PDJg0nUrhKGTx1bCwCeISVP
v8Thh4yiigjwKyK9RFRT0Fs=
=QwP1
-----END PGP SIGNATURE-----
--
dapper-changes mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/dapper-changes
