Debian update for tar - Secunia Advisories - Vulnerability Intelligence

Debian update for tar
Secunia Advisory:	SA28255	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2008-01-02
Popularity:	3,352 views

Critical:	Less critical
Impact:	System access
Where:	From remote
Solution Status:	Vendor Patch

OS:	Debian GNU/Linux 3.1 Debian GNU/Linux 4.0 Debian GNU/Linux unstable alias sid

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2007-4131 CVE-2007-4476

Description: Debian has issued an update for tar. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. For more information: SA26573 Solution: Apply updated packages. -- Debian 3.1 (oldstable) -- Source archives: http://security.debian.org/pool/updates/main/t/tar/tar_1.14.orig.tar.gz Size/MD5 checksum: 1485633 3094544702b1affa32d969f0b6459663 http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4.dsc Size/MD5 checksum: 846 cbcbbd7c638de842f913ac566c3f0b0a http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4.diff.gz Size/MD5 checksum: 51869 2675ec9acdf59ba6f0c54e5325675fcf alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_alpha.deb Size/MD5 checksum: 533650 c5e87a25f7c6efd0e39647249f889ca3 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_amd64.deb Size/MD5 checksum: 504092 64131456790b8bc4b45e341ce0ca6040 arm architecture (ARM) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_arm.deb Size/MD5 checksum: 502452 1374822a67eafcd4f385b43479225b7b hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_hppa.deb Size/MD5 checksum: 517962 f8d1d70a5989d1cab377efdc7c821e24 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_i386.deb Size/MD5 checksum: 500822 3b1099df9c1df15768f8dc568068e02f ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_ia64.deb Size/MD5 checksum: 543620 3026d8ed3c4e9203b3af8e7813a7858c m68k architecture (Motorola Mc680x0) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_m68k.deb Size/MD5 checksum: 489264 ec8bab9c3860d11e33b4c5ebef3be8e0 mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_mips.deb Size/MD5 checksum: 520658 9211a627bc4bd7859bf8e3c538abf342 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_mipsel.deb Size/MD5 checksum: 520438 a58746324064e51070a558102a134de3 powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_powerpc.deb Size/MD5 checksum: 507092 bd57425832d21b0a12843d196c2ba4f0 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_s390.deb Size/MD5 checksum: 512130 cd095e0a66981c279d8d1ede88c67a60 sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.4_sparc.deb Size/MD5 checksum: 499878 062c6de1a4b1b5a0ea9da2926f5d80ec -- Debian 4.0 (stable) -- Source archives: http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1.diff.gz Size/MD5 checksum: 31360 96eb9bcd2d8257893a4f530eb00c9da5 http://security.debian.org/pool/updates/main/t/tar/tar_1.16.orig.tar.gz Size/MD5 checksum: 2199571 d971b9d6114ad0527ef89fab0d3167e0 http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1.dsc Size/MD5 checksum: 871 c7d9d75758a04174348cd65bb7aaab16 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_alpha.deb Size/MD5 checksum: 738546 c181b637bb4ed83619c0086bb3d19312 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_amd64.deb Size/MD5 checksum: 714108 b7287060cfefae808c694a60f9cb421c arm architecture (ARM) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_arm.deb Size/MD5 checksum: 671036 c20ed223967ec38af1ddf88d1b49eff9 hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_hppa.deb Size/MD5 checksum: 695748 69013bb176a94d2ef6d17342728ed3f8 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_i386.deb Size/MD5 checksum: 675590 5630796721944b8f6c261628b0f2b18d ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_ia64.deb Size/MD5 checksum: 807488 0e4fd97fd5fef6a0b4fd6edba44ec9ca mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_mips.deb Size/MD5 checksum: 701392 c627d531a2d02d652a8fb220f90e51e1 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_mipsel.deb Size/MD5 checksum: 701162 979cdb4ee29782a1b9fa1d68c5de05ee powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_powerpc.deb Size/MD5 checksum: 683616 73c25ecbdbf6aac0c814b1b16cdf99ab s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_s390.deb Size/MD5 checksum: 694000 2364d67dcc6eb6b160590189fa4553ad sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/t/tar/tar_1.16-2etch1_sparc.deb Size/MD5 checksum: 668548 ec9e0a954b64ca8cbf8af1412870b8d8 -- Debian GNU/Linux unstable alias sid -- Fixed in version 1.18-2. Original Advisory: http://lists.debian.org/debian-securi...-security-announce-2007/msg00221.html Other References: SA26573: http://secunia.com/advisories/26573/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

7th Oct, 2008

New advisories:	19
New vulnerabilities:	68
Updated advisories:	62

Moderately // 306 views

Debian update for php5

Moderately // 234 views

Atarone CMS Multiple Vulnerabilities

Less // 228 views

MetaGauge Directory Traversal Vulnerability

Less // 261 views

H-Sphere webshell4 Cross-Site Scripting and Request Forgery

Moderately // 246 views

CMME Information Disclosure Security Issues

Moderately // 264 views

Debian update for squid

Less // 269 views

SUSE update for mercurial

Moderately // 311 views

SUSE update for openssh

Moderately // 226 views

SUSE update for dovecot and graphicsmagic

Less // 246 views

Fedora update for mediawiki

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.