tar 1.15.1-2ubuntu1 source package in Ubuntu
Changelog
tar (1.15.1-2ubuntu1) dapper; urgency=low
* SECURITY UPDATE: Arbitrary code execution with crafted tar files.
* src/xheader.c:
- Add a new function decode_num() which wraps xstrtoumax() and adds
boundary and sanity checking.
- Use decode_num() instead of xstrtoumax() in the code to avoid buffer
overflows on excessively large field values like GNU.sparse.numblocks.
- Patch taken from upstream CVS.
* CVE-2006-0300
-- Martin Pitt <email address hidden> Thu, 23 Feb 2006 11:07:05 +0100
Upload details
- Uploaded by:
- Martin Pitt
- Uploaded to:
- Dapper
- Original maintainer:
- Bdale Garbee
- Architectures:
- any
- Section:
- base
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| tar_1.15.1.orig.tar.gz | 2.1 MiB | bb50c8272591ce4345b436f77b6010d4aa938486dd46baa297a8ad8815a43d55 |
| tar_1.15.1-2ubuntu1.diff.gz | 28.2 KiB | 61912efc94af6865eba864286e0c972d6bbb9a17fd16d32fe203f79876fdd1fd |
| tar_1.15.1-2ubuntu1.dsc | 572 bytes | 750f79a77834d88ca168cec27db15468d051426fb60b973ff5eea3a8ccb3e437 |
Binary packages built by this source
- tar: No summary available for tar in ubuntu dapper.
No description available for tar in ubuntu dapper.
