Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2018-20482

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of service infinite read...

4.7CVSS6.1AI score0.00526EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.81 views

RHEL 7 : tar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tar: Bypassing the extract path name CVE-2016-6321 - tar: null-pointer dereference in paxdecodeheader in...

7.5CVSS7.3AI score0.15155EPSS
Exploits5References7
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.27 views

RHEL 6 : tar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tar: Bypassing the extract path name CVE-2016-6321 - tar: null-pointer dereference in paxdecodeheader in...

7.5CVSS6.9AI score0.15155EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.19 views

RHEL 5 : tar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tar: Bypassing the extract path name CVE-2016-6321 - tar: Infinite read loop in sparsedumpregion function...

7.5CVSS7.2AI score0.15155EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2022/05/17 12:0 a.m.25 views

openSUSE: Security Advisory for tar (SUSE-SU-2022:1548-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS5.7AI score0.03028EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/05/06 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2022:1548-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.9AI score0.03028EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/05/06 12:0 a.m.30 views

SUSE SLED15 / SLES15 Security Update : tar (SUSE-SU-2022:1548-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1548-1 advisory. - GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows loca...

7.5CVSS6.3AI score0.03028EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2021/11/29 12:0 a.m.24 views

Debian DLA-2830-1 : tar - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-2830 advisory. An infinite loop when --sparse is used with file shrinkage during read access was fixed in the GNU tar archiving utility. For Debian 9 stretch, this problem has been fixed ...

4.7CVSS6.4AI score0.00526EPSS
Exploits1References6
Debian
Debian
added 2021/11/28 12:39 p.m.51 views

[SECURITY] [DLA 2830-1] tar security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2830-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk November 28, 2021 https://wiki.debian.org/LTS -...

4.7CVSS5AI score0.00526EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2019:14215-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.03028EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2019:0926-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.2AI score0.03028EPSS
Exploits1References2
Cloud Foundry
Cloud Foundry
added 2021/02/10 12:0 a.m.35 views

USN-4692-1: tar vulnerabilities | Cloud Foundry

Severity Low Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description Chris Siebenmann discovered that tar incorrectly handled extracting files resized during extraction when invoked with the –sparse flag. An attacker could possibl...

7.5CVSS5.8AI score0.03028EPSS
Exploits1Affected Software3
OpenVAS
OpenVAS
added 2021/01/14 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-4692-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.2AI score0.03028EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/01/14 12:0 a.m.34 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : tar vulnerabilities (USN-4692-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4692-1 advisory. Chris Siebenmann discovered that tar incorrectly handled extracting files resized during extraction when invoked with the --spars...

7.5CVSS6.5AI score0.03028EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2021/01/13 6:56 p.m.124 views

USN-4692-1: tar vulnerabilities

Chris Siebenmann discovered that tar incorrectly handled extracting files resized during extraction when invoked with the --sparse flag. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM, Ubuntu 16.04 LTS and Ubuntu...

7.5CVSS6.5AI score0.03028EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.37 views

SUSE SLES12 Security Update : tar (SUSE-SU-2020:2806-1)

This update for tar fixes the following issues : Security issues fixed : CVE-2019-9923: Fixed a denial of service while parsing certain archives with malformed extended headers in paxdecodeheader bsc1130496. CVE-2018-20482: Fixed a denial of service when the '--sparse' option mishandles file...

7.5CVSS6.2AI score0.03028EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.47 views

Huawei EulerOS: Security Advisory for tar (EulerOS-SA-2020-1035)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.3AI score0.00526EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for tar (EulerOS-SA-2019-1346)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.3AI score0.00526EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for tar (EulerOS-SA-2019-1262)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.3AI score0.00526EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/01/13 12:0 a.m.34 views

EulerOS Virtualization for ARM 64 3.0.5.0 : tar (EulerOS-SA-2020-1068)

According to the version of the tar package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that...

4.7CVSS6.2AI score0.00526EPSS
Exploits1References2
Rows per page
Query Builder