|
Fedora update for tar
|
|
Secunia Advisory:
|
SA27514
|
|
|
Release Date:
|
2007-11-06
|
|
Popularity:
|
2,370 views
|
|
|
Critical:
|
Not critical
|
|
Impact:
|
DoS
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Fedora Core 6
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2007-4476
|
|
Description:
Fedora has issued an update for tar. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an error when processing specially crafted tar archives and can be exploited to cause a stack-based buffer overflow and crash the vulnerable application.
Solution:
Apply updated packages.
0fc5ceb49c465c5dc3d2f4b4f1d9c0c87809840e SRPMS/tar-1.15.1-27.fc6.src.rpm
0fc5ceb49c465c5dc3d2f4b4f1d9c0c87809840e noarch/tar-1.15.1-27.fc6.src.rpm
dbe7ba8a4d0484cc1d1e6e5a2691827d59a892dd ppc/debug/tar-debuginfo-1.15.1-27.fc6.ppc.rpm
481ac4dbed67bfc0d63e0a0fe231fa90711c7109 ppc/tar-1.15.1-27.fc6.ppc.rpm
2e4cfe41ed3972f049edf32bf12afa11c5df5be6 x86_64/debug/tar-debuginfo-1.15.1-27.fc6.x86_64.rpm
a958789d3a682b2e40266414fc61bbb527ebb16f x86_64/tar-1.15.1-27.fc6.x86_64.rpm
cdcd04d75f37a5e9ec54c8cee8abf176be1755a8 i386/tar-1.15.1-27.fc6.i386.rpm
010f340db722db162b65082dee12ecb745988744 i386/debug/tar-debuginfo-1.15.1-27.fc6.i386.rpm
Original Advisory:
https://www.redhat.com/archives/fedor...-announce/2007-November/msg00073.html
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
