Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Red Hat Enterprise Linux: RHSA-2006:0195-01 Low: Tar Path Traversal

red hat
Calendar Grey February 21, 2006
Dist Redhat Esm H88
A revised tar distribution has been released to remedy a path traversal vulnerability showing minimal risk for Red Hat customers.
An updated tar package that fixes a path traversal flaw is now available

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:

https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/10/

5. Bug IDs fixed (http://bugzilla.redhat.com/):

140589 - CVE-2005-1918 tar archive path traversal issue 140598 - CVE-2005-1918 tar archive path traversal issue


6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS: 845a820b30ac72349c6a0b8184a86d2c tar-1.13.25-5.AS21.1.src.rpm

i386: 54cb06fab08c95c25eea7ade716d71c7 tar-1.13.25-5.AS21.1.i386.rpm

ia64: cd7c0eb50dffd11cf0cbdd881825a8cc tar-1.13.25-5.AS21.1.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS: 845a820b30ac72349c6a0b8184a86d2c tar-1.13.25-5.AS21.1.src.rpm

ia64: cd7c0eb50dffd11cf0cbdd881825a8cc tar-1.13.25-5.AS21.1.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS: 845a820b30ac72349c6a0b8184a86d2c tar-1.13.25-5.AS21.1.src.rpm

i386: 54cb06fab08c95c25eea7ade716d71c7 tar-1.13.25-5.AS21.1.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS: 845a820b30ac72349c6a0b8184a86d2c tar-1.13.25-5.AS21.1.src.rpm

i386: 54cb06fab08c95c25eea7ade716d71c7 tar-1.13.25-5.AS21.1.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS: a417c5eee303ba02e82d5e3dd51a90c9 tar-1.13.25-14.RHEL3.src.rpm

i386: 774d7a899b21106977e6f97ac21c60d6 tar-1.13.25-14.RHEL3.i386.rpm

ia64: 9c280f3ef92ac03b0c5f58d0f0bfb1be tar-1.13.25-14.RHEL3.ia64.rpm

ppc: 8541793f7153051ca270c8f778813ec5 tar-1.13.25-14.RHEL3.ppc.rpm

s390: 96945481f9c6429850ab676fa622f7b5 tar-1.13.25-14.RHEL3.s390.rpm

s390x: cec08d4de830f20e40ec351a827ec5f6 tar-1.13.25-14.RHEL3.s390x.rpm

x86_64: dafe232a7b44dd14476a86abea130c69 tar-1.13.25-14.RHEL3.x86_64.rpm

Red Hat Desktop version 3:

SRPMS: a417c5eee303ba02e82d5e3dd51a90c9 tar-1.13.25-14.RHEL3.src.rpm

i386: 774d7a899b21106977e6f97ac21c60d6 tar-1.13.25-14.RHEL3.i386.rpm

x86_64: dafe232a7b44dd14476a86abea130c69 tar-1.13.25-14.RHEL3.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS: a417c5eee303ba02e82d5e3dd51a90c9 tar-1.13.25-14.RHEL3.src.rpm

i386: 774d7a899b21106977e6f97ac21c60d6 tar-1.13.25-14.RHEL3.i386.rpm

ia64: 9c280f3ef92ac03b0c5f58d0f0bfb1be tar-1.13.25-14.RHEL3.ia64.rpm

x86_64: dafe232a7b44dd14476a86abea130c69 tar-1.13.25-14.RHEL3.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS: a417c5eee303ba02e82d5e3dd51a90c9 tar-1.13.25-14.RHEL3.src.rpm

i386: 774d7a899b21106977e6f97ac21c60d6 tar-1.13.25-14.RHEL3.i386.rpm

ia64: 9c280f3ef92ac03b0c5f58d0f0bfb1be tar-1.13.25-14.RHEL3.ia64.rpm

x86_64: dafe232a7b44dd14476a86abea130c69 tar-1.13.25-14.RHEL3.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package

Summary

References

https://www.cve.org/CVERecord?id=CVE-2005-1918

Package List


Severity
low
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2006:0195-01
Issue date: 2006-02-21
Updated on: 2006-02-21
Product: Red Hat Enterprise Linux

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64

Red Hat Linux Advanced Workstation 2.1 - ia64

Red Hat Enterprise Linux ES version 2.1 - i386

Red Hat Enterprise Linux WS version 2.1 - i386

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64

Red Hat Desktop version 3 - i386, x86_64

Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here