11 matches found
RHSA-2026:0435 Red Hat Security Advisory: tar security update
Bulletin has no description...
Moderate: Red Hat Security Advisory: tar security update
An update for tar is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
RHSA-2026:0067 Red Hat Security Advisory: tar security update
Bulletin has no description...
Moderate: tar security update
The GNU tar program can save multiple files in an archive and restore files from an archive. Security Fixes: tar: Tar path traversal CVE-2025-45582 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page...
EUVD-2025-21178
Malicious code in bioql PyPI...
SUSE-SU-2024:0071-1 Security update for tar
This update for tar fixes the following issues: - CVE-2023-39804: Incorrectly handled extension attributes in PAX archives can lead to a crash bsc1217969...
SUSE-SU-2023:0441-1 Security update for tar
This update for tar fixes the following issues: - CVE-2022-48303: Fixed a one-byte out-of-bounds read that resulted in use of uninitialized memory for a conditional jump bsc1207753...
DSA-5008-1 node-tar - security update
Bulletin has no description...
SUSE-SU-2016:2896-1 Security update for tar
This update for tar fixes the following issues: - Fix the POINTYFEATHER vulnerability - GNU tar archiver can be tricked into extracting files and directories in the given destination, regardless of the path names specified on the command line bsc1007188 CVE-2016-6321 - Fix Amanda integration issu...
Updated tar packages fix security vulnerability
Harry Sintonen discovered that GNU tar does not properly handle member names containing '..', thus allowing an attacker to bypass the path names specified on the command line and replace files and directories in the target directory CVE-2016-6321...
CVE-2002-1216
GNU tar 1.13.19 and other versions before 1.13.25 allows remote attackers to overwrite arbitrary files via a symlink attack, as the result of a modification that effectively disabled the security check...