CVE-2021-33640

NameCVE-2021-33640
DescriptionAfter tar_close(), libtar.c releases the memory pointed to by pointer t. After tar_close() is called in the list() function, it continues to use pointer t: free_longlink_longname(t->th_buf) . As a result, the released memory is used (use-after-free).
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub advisories/code/issues, web search, more)

Notes

https://bugzilla.redhat.com/show_bug.cgi?id=2143012
check details, possibly Huawei OpenEuler OS specific as the related CVEs

Search for package or bug name: Reporting problems