tar 1.30+dfsg-7ubuntu0.20.04.2 source package in Ubuntu


tar (1.30+dfsg-7ubuntu0.20.04.2) focal-security; urgency=medium

  * SECURITY UPDATE: Denial of service (LP: #1912091)
    - debian/patches/CVE-2021-20193.patch: in read_header method in
      src/list.c, change the return value to be the value of status
      and break the execution, jumping to free next_long_name and
      next_long_link before returning.
    - CVE-2021-20193

 -- Rodrigo Figueiredo Zaiden <email address hidden>  Tue, 15 Mar 2022 09:59:59 -0300

Upload details

Uploaded by:
Rodrigo Figueiredo Zaiden
Uploaded to:
Original maintainer:
Ubuntu Developers
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section


File Size SHA-256 Checksum
tar_1.30+dfsg.orig.tar.xz 1.8 MiB c02f3747ffe02017878303dde8b78e79cd220364c5e8048cf92320232e38912d
tar_1.30+dfsg-7ubuntu0.20.04.2.debian.tar.xz 23.0 KiB b9342af931dbf253942737b03c40f74066aa996fc4d81c6143fcda9c8d46115c
tar_1.30+dfsg-7ubuntu0.20.04.2.dsc 1.8 KiB 160edb4ee81e451988824c2a6137210d8bc5c4ebf9dc5e70716d6ea20d9efc29

View changes file

Binary packages built by this source

tar: GNU version of the tar archiving utility

 Tar is a program for packaging a set of files as a single archive in tar
 format. The function it performs is conceptually similar to cpio, and to
 things like PKZIP in the DOS world. It is heavily used by the Debian package
 management system, and is useful for performing system backups and exchanging
 sets of files with others.

tar-dbgsym: debug symbols for tar
tar-scripts: optional scripts for GNU version of the tar archiving utility

 This package provides the backup, restore, backup.sh, and dump-remind
 scripts that are mentioned in the tar documentation.