Package: tar Version: 1.18-1 Severity: grave Tags: security patch -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
- From CVE-2007-4131: "The vulnerability is caused due to an input validation error when extracting tar archives. This can be exploited to extract files to arbitrary locations outside the specified directory with the permissions of the user running GNU tar by using the ".." directory traversal sequence in a specially crafted tar archive." A patch is available in upstream CVS: http://cvs.savannah.gnu.org/viewvc/tar/src/names.c?root=tar&r1=1.63&r2=1.64 The same portion of code is present also in versions 1.16 (stable) and 1.14 (oldstable), so this bug should be probably tracked and fixed there too. However I'm not sure if there are other patches already applied there to prevent this issue, so right now I'm reporting this bug for sid only. Cheers, Luca - -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.20-1-686 (SMP w/1 CPU core) Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages tar depends on: ii libc6 2.6.1-1 GNU C Library: Shared libraries tar recommends no packages. - -- no debconf information -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGzqZaRqobajv7n7MRAhfjAJ9PQ+ZxxO5cOhE5FZMWLl/V84qdtACgqoy6 Cn3M2jeuQ0UM9BUXqxUsPrQ= =mvHJ -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]