MGASA-2021-0233 - Updated tar package fix a security vulnerability Publication date: 08 Jun 2021 URL: https://advisories.mageia.org/MGASA-2021-0233.html Type: security Affected Mageia releases: 7, 8 CVE: CVE-2021-20193 A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled consumption of memory. The highest threat from this vulnerability is to system availability (CVE-2021-20193). References: - https://bugs.mageia.org/show_bug.cgi?id=29049 - https://lists.opensuse.org/archives/list/[email protected]/thread/XRDSUUE3LUKBDRLPB7GTT5QZRPV5J7O4/ - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20193 SRPMS: - 7/core/tar-1.32-1.1.mga7 - 8/core/tar-1.33-2.1.mga8
Mageia 2021-0233: tar security update
A flaw was found in the src/list.c of tar 1.33 and earlier
Summary
CVE: CVE-2021-20193
A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled consumption of memory. The highest threat from this vulnerability is to system availability (CVE-2021-20193).
Resolution
MGASA-2021-0233 - Updated tar package fix a security vulnerability
References
- https://bugs.mageia.org/show_bug.cgi?id=29049
- https://lists.opensuse.org/archives/list/[email protected]/thread/XRDSUUE3LUKBDRLPB7GTT5QZRPV5J7O4/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20193
Severity
Issued Date: 08 Jun 2021
URL: https://advisories.mageia.org/MGASA-2021-0233.html
Type: security
Affected Mageia releases: 7, 8
News
HOWTOs
Features
Secure Linux Hosting for Businesses
What Is Threat Intelligence?
CloudLinux Simplifies & Enhances Linux Security with its TuxCare Unified Enterprise Support Services
LinuxSecurity, Leading Provider of Linux Security News and Information, Unveils its New Website
Biden's New Executive Cybersecurity Order Highlights the Power of Open-Source Security
About Us
Powered By
