Lucene search

K
ibmIBM8CDD3C84421D0824847DF75AB1FD429F4736F5FC89977113624C5101FCC8B2F3
HistoryMar 08, 2019 - 5:15 a.m.

Security Bulletin: GNU Tar sparse_dump_region function denial of service affects IBM Spectrum LSF Application Center

2019-03-0805:15:01
www.ibm.com
11

0.0004 Low

EPSS

Percentile

5.1%

Summary

GNU Tar sparse_dump_region function denial of service affects IBM Spectrum LSF Application Center

Vulnerability Details

CVEID: CVE-2018-20482 DESCRIPTION: GNU Tar sparse_dump_region function denial of service
CVSS Base Score: 3.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/154792&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:P/A:N)

Affected Products and Versions

Spectrum LSF Application Center 10.2

Remediation/Fixes

<Product

|

VRMF

|

APAR

|

Remediation/First Fix

—|—|—|—

Spectrum LSF Application Center

|

10.2

|

None

|

  1. Upgrade GNU-tar from following location: <http://www.gnu.org/software/tar/&gt;

Workarounds and Mitigations

None.