ROS-20250424-10

A vulnerability in the libtar package is related to the initiation of a malloc0 call for the gnulonglink variable. Exploitation The vulnerability could allow a remote attacker to gain access to sensitive information. information The libtar package vulnerability is related to the initiation of a...

Ubuntu: Security Advisory (USN-7398-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-4033-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dla-4033 : libtar-dev - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4033 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4033-1 [email protected]...

RHEL 6 : libtar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libtar: missing validation of file names CVE-2013-4420 Note that Nessus has not tested for this issue but has inste...

EulerOS Virtualization 3.0.6.0 : libtar (EulerOS-SA-2023-2224)

According to the versions of the libtar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - After tarclose, libtar.c releases the memory pointed to by pointer t. After tarclose is called in the list function, it continues ...

Huawei EulerOS: Security Advisory for libtar (EulerOS-SA-2023-2224)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP11 : libtar (EulerOS-SA-2023-1575)

According to the versions of the libtar package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - After tarclose, libtar.c releases the memory pointed to by pointer t. After tarclose is called in the list function, it continues to use pointer ...

Fedora 36 : libtar (2022-ccc68b06cc)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-ccc68b06cc advisory. - fix use-after-free bugs introduced by incorrect memleak fixes CVE-2021-33640 Tenable has extracted the preceding description block directly from t...

CVE-2021-33643 affecting package libtar for versions less than 1.2.20-10

CVE-2021-33643 affecting package libtar for versions less than 1.2.20-10. A patched version of the package is available...

Huawei EulerOS: Security Advisory for libtar (EulerOS-SA-2021-2106)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP5 : libtar (EulerOS-SA-2021-1206)

According to the version of the libtar package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attacke...

Huawei EulerOS: Security Advisory for libtar (EulerOS-SA-2019-1440)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.1.0 : libtar (EulerOS-SA-2019-1440)

According to the version of the libtar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Multiple integer overflows in the thread function in lib/block.c in libtar before 1.2.20 allow remote attackers to cause a denial of...

Photon OS 2.0: Libtar PHSA-2018-2.0-0029

An update of the libtar package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0029. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid12192...

Updated libtar package fixes security vulnerability

A directory traversal attack was reported against libtar, a C library for manipulating tar archives. The application does not validate the filenames inside the tar archive, allowing to extract files in arbitrary path. An attacker can craft a tar file to override files beyond the tarextractglob an...

MGASA-2014-0090 Updated libtar package fixes security vulnerability

A directory traversal attack was reported against libtar, a C library for manipulating tar archives. The application does not validate the filenames inside the tar archive, allowing to extract files in arbitrary path. An attacker can craft a tar file to override files beyond the tarextractglob an...

CentOS 6 : libtar (CESA-2013:1418)

An updated libtar package that fixes one security issue is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RHEL 6 : libtar (RHSA-2013:1418)

An updated libtar package that fixes one security issue is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Oracle Linux 6 : libtar (ELSA-2013-1418)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-1418 advisory. 1.2.11-17.el64.1 - fix CVE-2013-4397: buffer overflows by expanding a specially-crafted archive Tenable has extracted the preceding description block directly...