Package name
tar
Date
2007-10-15
Advisory ID
MDKSA-2007:197
Affected versions
2007.0 x86_64 , 2007.1 i586 , 2007.0 i586 , CS4.0 i586 , 2008.0 x86_64 , CS4.0 x86_64 , 2008.0 i586 , 2007.1 x86_64

Problem description

A buffer overflow in GNU tar has unspecified attack vectors and impact,
resulting in a crashing stack.

Updated packages fix this issue.

Updated packages

2007.0 x86_64

 a7ca270e229a7a66e3945aa27ebe5574  2007.0/x86_64/tar-1.15.91-1.3mdv2007.0.x86_64.rpm 
 799e95edad373e229f27ac662a2803c7  2007.0/SRPMS/tar-1.15.91-1.3mdv2007.0.src.rpm

2007.1 i586

 ad38128760a1d444cb7f92b88d0fa7e3  2007.1/i586/tar-1.16-3.2mdv2007.1.i586.rpm 
 d8be92eefacc8b999f3021942c1e9776  2007.1/SRPMS/tar-1.16-3.2mdv2007.1.src.rpm

2007.0 i586

 ad9831bdc61bfd45b4236baf91ba303b  2007.0/i586/tar-1.15.91-1.3mdv2007.0.i586.rpm 
 799e95edad373e229f27ac662a2803c7  2007.0/SRPMS/tar-1.15.91-1.3mdv2007.0.src.rpm

CS4.0 i586

 ae6c4f628deac215fc00421176245fca  corporate/4.0/i586/tar-1.15.1-5.4.20060mlcs4.i586.rpm 
 00e37ea23dc4f0218ccfed4edbe47bf2  corporate/4.0/SRPMS/tar-1.15.1-5.4.20060mlcs4.src.rpm

2008.0 x86_64

 16e3f71fc1b9b2fef42378e025d93ea8  2008.0/x86_64/tar-1.18-1.1mdv2008.0.x86_64.rpm 
 4dd90e75bf8d363ed44e1bd7346d42cf  2008.0/SRPMS/tar-1.18-1.1mdv2008.0.src.rpm

CS4.0 x86_64

 ea73607c5f7b4d32cb7c158ffb9fb366  corporate/4.0/x86_64/tar-1.15.1-5.4.20060mlcs4.x86_64.rpm 
 00e37ea23dc4f0218ccfed4edbe47bf2  corporate/4.0/SRPMS/tar-1.15.1-5.4.20060mlcs4.src.rpm

2008.0 i586

 e81d250db24d4f5dd935986dece9f7f0  2008.0/i586/tar-1.18-1.1mdv2008.0.i586.rpm 
 4dd90e75bf8d363ed44e1bd7346d42cf  2008.0/SRPMS/tar-1.18-1.1mdv2008.0.src.rpm

2007.1 x86_64

 90dff66308016f17f03558d4ba550387  2007.1/x86_64/tar-1.16-3.2mdv2007.1.x86_64.rpm 
 d8be92eefacc8b999f3021942c1e9776  2007.1/SRPMS/tar-1.16-3.2mdv2007.1.src.rpm

References