Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.10 : amanda vulnerability (USN-6614-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6614-1 advisory. It was discovered that amanda did not properly check certain arguments. A local unprivileged attacker could possibly use this issu...

Code injection

AMANDA Advanced Maryland Automatic Network Disk Archiver before tag-community-3.5.4 mishandles argument checking for runtar.c, a different vulnerability than CVE-2022-37705...

CVE-2023-30577

AMANDA Advanced Maryland Automatic Network Disk Archiver before tag-community-3.5.4 mishandles argument checking for runtar.c, a different vulnerability than CVE-2022-37705...

CVE-2023-30577

AMANDA (backup system) is affected by CVE-2023-30577: the SUID binary runtar mishandles arguments, allowing certain GNU tar options (e.g., starting with --exclude) to be accepted and potentially cause root-level execution. This is a local privilege-escalation path tied to runtar’s argument handli...

[SECURITY] Fedora 36 Update: amanda-3.5.3-1.fc36

AMANDA, the Advanced Maryland Automatic Network Disk Archiver, is a backup system that allows the administrator of a LAN to set up a single master backup server to back up multiple hosts to one or more tape drives or disk files. AMANDA uses native dump and/or GNU tar facilities and can back up a...