Oval Definition:oval:com.redhat.rhsa:def:20060749
Revision Date:2006-12-19Version:635
Title:RHSA-2006:0749: tar security update (Moderate)
Description:The GNU tar program saves many files together in one archive and can restore individual files (or all of the files) from that archive.

  • Teemu Salmela discovered a path traversal flaw in the way GNU tar extracted archives. A malicious user could create a tar archive that could write to arbitrary files to which the user running GNU tar has write access. (CVE-2006-6097)

    Users of tar should upgrade to this updated package, which contains a replacement backported patch to correct this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2006-6097
    RHSA-2006:0749
    RHSA-2006:0749-01
    RHSA-2006:0749-01
    Platform(s):Red Hat Enterprise Linux 3
    Red Hat Enterprise Linux 4
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND tar is earlier than 0:1.13.25-15.RHEL3
  • AND tar is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND tar is earlier than 0:1.14-12.RHEL4
  • AND tar is signed with Red Hat master key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND tar is earlier than 0:1.13.25-15.RHEL3
  • AND tar is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND tar is earlier than 0:1.14-12.RHEL4
  • AND tar is signed with Red Hat master key
    • Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND tar is earlier than 0:1.14-12.RHEL4
  • AND tar is signed with Red Hat redhatrelease2 key
    • BACK