Lucene search
+L

4 matches found

redhat
redhat
added 2025/12/22 1:35 a.m.3 views

golang: archive/tar: Unbounded allocation when parsing GNU sparse map

A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go...

4.3CVSS7.1AI score0.00419EPSS
Exploits0References8
attackerkb
attackerkb
added 2012/03/21 10:11 a.m.5 views

CVE-2012-1424

The TAR file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal aka Cat QuickHeal 11.00, Jiangmin Antivirus 13.0.900, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a POSIX TAR file with a \19\04\00\10...

4.3CVSS5.7AI score0.87443EPSS
Exploits0References7
attackerkb
attackerkb
added 2012/03/21 10:11 a.m.3 views

CVE-2012-1423

The TAR file parser in Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, K7 AntiVirus 9.77.3565, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5,...

4.3CVSS5.7AI score0.89857EPSS
Exploits0References8
attackerkb
attackerkb
added 2012/03/21 10:11 a.m.1 views

CVE-2012-1419

The TAR file parser in ClamAV 0.96.4 and Quick Heal aka Cat QuickHeal 11.00 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial aliases character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the...

4.3CVSS5.7AI score0.41367EPSS
Exploits0References5
Rows per page
Query Builder