Release | Version |
---|---|
jessie | 1.27.1-2+deb8u1 |
jessie (security) | 1.27.1-2+deb8u2 |
stretch | 1.29b-1.1 |
buster | 1.30+dfsg-5 |
sid | 1.30+dfsg-5 |
Bug | jessie | stretch | buster | sid | Description |
---|---|---|---|---|---|
CVE-2018-20482 | fixed | vulnerable (no DSA) | fixed | fixed | GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage ... |
Bug | jessie | stretch | buster | sid | Description |
---|---|---|---|---|---|
TEMP-0290435-0B57B5 | vulnerable | vulnerable | vulnerable | vulnerable | tar's rmt command may have undesired side effects |
CVE-2005-2541 | vulnerable | vulnerable | vulnerable | vulnerable | Tar 1.15.1 does not properly warn the user when extracting setuid or ... |
Bug | Description |
---|---|
CVE-2016-6321 | Directory traversal vulnerability in the safer_name_suffix function in ... |
CVE-2010-0624 | Heap-based buffer overflow in the rmt_read__ function in ... |
CVE-2007-4476 | Buffer overflow in the safer_name_suffix function in GNU tar has ... |
CVE-2007-4131 | Directory traversal vulnerability in the contains_dot_dot function in ... |
CVE-2006-6097 | GNU tar 1.16 and 1.15.1, and possibly other versions, allows ... |
CVE-2006-0300 | Buffer overflow in tar 1.14 through 1.15.90 allows user-assisted ... |
CVE-2005-1918 | The original patch for a GNU tar directory traversal vulnerability ... |
CVE-2002-1216 | GNU tar 1.13.19 and other versions before 1.13.25 allows remote ... |
DSA / DLA | Description |
---|---|
DLA-1623-1 | tar - security update |
DSA-3702-1 | tar - security update |
DLA-690-1 | tar - security update |
DSA-1438-1 | tar |
DSA-1438-1 | tar |
DSA-1223-1 | tar |
DSA-987-1 | tar - buffer overflow |