Alerts This Week
Warning Icon 1 681
Alerts This Week
Warning Icon 1 681

Gentoo: GLSA-202110-02 Normal: GNU Tar Archive Extraction Vulnerability

gentoo
Calendar Grey September 16, 2007
Dist Gentoo Esm H88
A critical vulnerability in GNU Tar may allow directory traversal, enabling malicious access to sensitive files. Update to the latest version immediately to mitigate risks
A directory traversal vulnerability has been discovered in GNU Tar.

Summary

Gentoo Linux Security Advisory GLSA 200709-09 https://security.gentoo.org/ Severity: Normal Title: GNU Tar: Directory traversal vulnerability Date: September 15, 2007 Bugs: #189682 ID: 200709-09

Synopsis ======= A directory traversal vulnerability has been discovered in GNU Tar.
Background ========= The GNU Tar program provides the ability to create tar archives, as well as various other kinds of manipulation.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-arch/tar < 1.18-r2 >= 1.18-r2
========== Dmitry V. Levin discovered a directory traversal vulnerability in the contains_dot_dot() function in file src/names.c.
Impact ===== By enticing a user to ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory security issue gentoo software update directory traversal normal severity gnu tar

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory security issue gentoo software update directory traversal normal severity gnu tar

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here