MDKSA-2006:046
- Package name
- tar
- Date
- 2006-02-21
- Advisory ID
- MDKSA-2006:046
- Affected versions
- 2006.0 i586 , 10.2 i586 , 10.1 i586 , 10.2 x86_64 , 2006.0 x86_64 , 10.1 x86_64
Problem description
Gnu tar versions 1.14 and above have a buffer overflow vulnerability
and some other issues including:
- Carefully crafted invalid headers can cause buffer overrun.
- Invalid header fields go undiagnosed.
- Some valid time strings are ignored.
The updated packages have been patched to address this issue.
Updated packages
2006.0 i586
5300c6bc1aa290f2a8efffff2b3e8b27 2006.0/RPMS/tar-1.15.1-5.1.20060mdk.i586.rpm 275c24b2288e5b9c57d5a1bdef4798ad 2006.0/SRPMS/tar-1.15.1-5.1.20060mdk.src.rpm
10.2 i586
91ad7217d416f4d07536a08c6762fd8d 10.2/RPMS/tar-1.15.1-2.1.102mdk.i586.rpm efd8210667f158419143b243c1ee01d7 10.2/SRPMS/tar-1.15.1-2.1.102mdk.src.rpm
10.1 i586
8bd49b5e60e1736e771e3907789e37bb 10.1/RPMS/tar-1.14-1.1.101mdk.i586.rpm 57dc0115bfe997451de8d05375785395 10.1/SRPMS/tar-1.14-1.1.101mdk.src.rpm
10.2 x86_64
edc3e1b3eec8c5f52aa29c6f7351f563 x86_64/10.2/RPMS/tar-1.15.1-2.1.102mdk.x86_64.rpm efd8210667f158419143b243c1ee01d7 x86_64/10.2/SRPMS/tar-1.15.1-2.1.102mdk.src.rpm
2006.0 x86_64
2c7378971d6b87fad153b8667e800b00 x86_64/2006.0/RPMS/tar-1.15.1-5.1.20060mdk.x86_64.rpm 275c24b2288e5b9c57d5a1bdef4798ad x86_64/2006.0/SRPMS/tar-1.15.1-5.1.20060mdk.src.rpm
10.1 x86_64
c4ad8f0250fef5da4ba2f9097c6190e2 x86_64/10.1/RPMS/tar-1.14-1.1.101mdk.x86_64.rpm 57dc0115bfe997451de8d05375785395 x86_64/10.1/SRPMS/tar-1.14-1.1.101mdk.src.rpm