-
tar (1.15.1-2ubuntu0.2) breezy-security; urgency=low
* SECURITY UPDATE: files can be overwritten/renamed in any writable location
in the filesystem via GNUTYPE_NAMES type.
* src/extract.c: disable GNUTYPE_NAMES type processing by default since it
allows for immediate symlink creation and renames.
* src/common.h, src/tar.c: add --allow-name-mangling option to restore
default behavior.
* References
http://archives.neohapsis.com/archives/fulldisclosure/2006-11/0344.html
-- Kees Cook <email address hidden> Wed, 22 Nov 2006 20:15:02 -0800
-
tar (1.15.1-2ubuntu0.1) breezy-security; urgency=low
* SECURITY UPDATE: Arbitrary code execution with crafted tar files.
* src/xheader.c:
- Add a new function decode_num() which wraps xstrtoumax() and adds
boundary and sanity checking.
- Use decode_num() instead of xstrtoumax() in the code to avoid buffer
overflows on excessively large field values like GNU.sparse.numblocks.
- Patch taken from upstream CVS.
* CVE-2006-0300
-- Martin Pitt <email address hidden> Thu, 23 Feb 2006 11:25:52 +0100
-
tar (1.15.1-2) unstable; urgency=low
* patch from LaMont to fix gcc-4.0 error in the test suite,
closes: #308815, #310830
* patch for de.po from Jens Seidel, closes: #313900
* fix amanda upstream URL in the info pages, closes: #310158
* patch from NIIBE Yutaka to support cross builds, closes: #283723
-- Bdale Garbee <email address hidden> Tue, 14 Jun 2005 23:42:40 -0600
