Two heap-based buffer overflow flaws were found in the way libtar handled certain archives. If a user were tricked into expanding a specially-crafted archive, it could cause the libtar executable or an application using libtar to crash or, potentially, execute arbitrary code (CVE-2013-4397).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 2 | noarch | libtar | < 1.2.11-10.1 | libtar-1.2.11-10.1.mga2 |
Mageia | 3 | noarch | libtar | < 1.2.18-2.1 | libtar-1.2.18-2.1.mga3 |