4 matches found
Medium: clamav1.5
Issue Overview: tar-rs is a tar archive reading/writing library for Rust. Versions 0.4.44 and below have conditional logic that skips the PAX size header in cases where the base header size is nonzero. As part of CVE-2025-62518, the astral-tokio-tar project was changed to correctly honor PAX size...
CVE-2026-33055 vulnerabilities
Vulnerabilities for packages: sccache, buck2, qdrant, wasmcloud, cargo-c, deno, wasm-pack, rye, zizmor, pixi, rustup...
Linux Distros Unpatched Vulnerability : CVE-2026-33055
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tar-rs is a tar archive reading/writing library for Rust. Versions 0.4.44 and below have conditional logic that skips the PAX size header in cases where the bas...
CVE-2026-33055
creationtimestamp| type| source ---|---|--- 2026-03-19 21:49:54+00:00| published-proof-of-concept| https://github.com/composefs/tar-rs/security/advisories/GHSA-gchp-q4r4-x4ff 2026-03-19 21:49:54+00:00| published-proof-of-concept|...