SciLinux: CVE-2007-4476 Moderate: tar SL3.x, SL4.x, SL5.x i386/x86_64
Summary
specially-crafted archiveA heap-based buffer overflow flaw was found in the way tar expandedarchive files. If a user were tricked into expanding a specially-craftedarchive, it could cause the tar executable to crash or execute arbitrarycode with the privileges of the user running tar. (CVE-2010-0624)A denial of service flaw was found in the way tar expanded archivefiles. If a user expanded a specially-crafted archive, it could causethe tar executable to crash. (CVE-2007-4476) - SL4 and SL5 OnlySL 3.0.xSRPMS:tar-1.13.25-16.RHEL3.src.rpmi386:tar-1.13.25-16.RHEL3.i386.rpmx86_64:tar-1.13.25-16.RHEL3.x86_64.rpm