73 matches found
Huawei EulerOS: Security Advisory for tar (EulerOS-SA-2023-2198)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP8 : tar (EulerOS-SA-2023-2198)
According to the versions of the tar package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change th...
Huawei EulerOS: Security Advisory for tar (EulerOS-SA-2023-2131)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.11.1 : tar (EulerOS-SA-2023-2079)
According to the versions of the tar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitati...
EulerOS Virtualization 2.9.0 : tar (EulerOS-SA-2023-2028)
According to the versions of the tar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitati...
EulerOS Virtualization 2.9.1 : tar (EulerOS-SA-2023-2007)
According to the versions of the tar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitati...
Ubuntu 23.04 : tar vulnerability (USN-5900-2)
The remote Ubuntu 23.04 host has packages installed that are affected by a vulnerability as referenced in the USN-5900-2 advisory. USN-5900-1 fixed vulnerabilities in tar. This update fixes it to Ubuntu 23.04. Tenable has extracted the preceding description block directly from the Ubuntu security...
EulerOS 2.0 SP10 : tar (EulerOS-SA-2023-1964)
According to the versions of the tar package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change th...
EulerOS 2.0 SP9 : tar (EulerOS-SA-2023-1881)
According to the versions of the tar package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change th...
EulerOS 2.0 SP9 : tar (EulerOS-SA-2023-1856)
According to the versions of the tar package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change th...
Rocky Linux 9 : tar (RLSA-2023:0959)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:0959 advisory. - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of...
Amazon Linux 2023 : tar (ALAS2023-2023-153)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-153 advisory. GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of control has not been demonstrated. The issue...
Mageia: Security Advisory (MGASA-2023-0079)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current tar Vulnerability (SSA:2023-083-01)
The version of tar installed on the remote host is prior to 1.26 / 1.29 / 1.34. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-083-01 advisory. - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump...
Important: tar
Issue Overview: GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of control has not been demonstrated. The issue occurs in fromheader in list.c via a V7 archive in which mtime has approximate...
Important: tar
Issue Overview: GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of control has not been demonstrated. The issue occurs in fromheader in list.c via a V7 archive in which mtime has approximate...
Updated tar packages fix security vulnerability
GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of control has not been demonstrated. The issue occurs in fromheader in list.c via a V7 archive in which mtime has approximately 11 whitespace...
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : tar vulnerability (USN-5900-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5900-1 advisory. It was discovered that tar incorrectly handled certain files. An attacker could possibly use this issue to expose sensitive...
Oracle Linux 9 : tar (ELSA-2023-0959)
The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-0959 advisory. - Fix CVE-2022-48303 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...
AlmaLinux 9 : tar (ALSA-2023:0959)
The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2023:0959 advisory. - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of...