Client Login 
Community 
Contact Us 
LinkBack URL
About LinkBacksFull Story: http://www.net-security.org/advisory.php?id=6134
Issue date: 2006-04-04
Product: Fedora Core
Jim Meyering discovered a buffer overflow bug in the way GNU tar
extracts malformed archives. By tricking a user into extracting a
malicious tar archive, it is possible to execute arbitrary code as the
user running tar. The Common Vulnerabilities and Exposures project
(cve.mitre.org) assigned the name CVE-2006-0300 to this issue.
Users of tar should upgrade to this updated package, which contains a
backported patch to correct this issue.
Welcome to the JaguarPC Community
Results 1 to 1 of 1
This is a discussion on Fedora Legacy Update Advisory - Updated tar package fixes security issue in the Open Discussion & Chit-chat forum
Full Story: http://www.net-security.org/advisory.php?id=6134
Issue date: 2006-04-04
Product: Fedora Core
Jim Meyering discovered a buffer overflow bug in the way GNU tar
extracts malformed archives. By ...
-
04-05-2006, 06:32 AM #1Yeah, I know a LOT!
- Join Date
- Mar 2003
- Location
- Arizona Uplands
- Posts
- 10,775
Fedora Legacy Update Advisory - Updated tar package fixes security issue
DISCLAIMER Any resemblance between the views expressed above and those of the owners and operators of this system is purely coincidental. Any resemblance between these views and my own are non-deterministic. The existence of Vin DSL is questionable. The existence of views in the absence of anyone to hold them is problematic. The existence of the reader is left as an exercise in the second-order coefficient.
No Guts, No Story! VinDSL © 2010
Reply With Quote
Posting Permissions
Get Social:
Copyright © 2011 JaguarPC.com
Bookmarks