tar 1.14-2ubuntu0.1 source package in Ubuntu
Changelog
tar (1.14-2ubuntu0.1) hoary-security; urgency=low
* SECURITY UPDATE: Arbitrary code execution with crafted tar files.
* src/xheader.c:
- Add a new function decode_num() which wraps xstrtoumax() and adds
boundary and sanity checking.
- Use decode_num() instead of xstrtoumax() in the code to avoid buffer
overflows on excessively large field values like GNU.sparse.numblocks.
- Patch taken from upstream CVS.
* CVE-2006-0300
-- Martin Pitt <email address hidden> Thu, 23 Feb 2006 10:27:25 +0000
Upload details
- Uploaded by:
- Martin Pitt
- Uploaded to:
- Hoary
- Original maintainer:
- Bdale Garbee
- Architectures:
- any
- Section:
- base
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| tar_1.14.orig.tar.gz | 1.4 MiB | c1730ca923c12b8ed87e8577ae940b0f4d84d5f2f449667a73ab83242bd787c7 |
| tar_1.14-2ubuntu0.1.diff.gz | 20.9 KiB | f68ab87df1c033da504423e0fe11fbd1c5ef84ec8e5e4406005742df459b2e07 |
| tar_1.14-2ubuntu0.1.dsc | 568 bytes | f7ec544d60d886cf702307e37df502d31a6cd4180993d1cc65d1e29916039d18 |
Binary packages built by this source
- tar: No summary available for tar in ubuntu hoary.
No description available for tar in ubuntu hoary.
