Oval Definition:	oval:org.mitre.oval:tst:39957
Comment: tar is earlier than 2:1.15.1-23.0.1.el5_4.2 Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14170 State: oval:org.mitre.oval:ste:11498 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:9336 V Buffer overflow in the safer_name_suffix function in GNU tar has unspecified attack vectors and impact, resulting in a "crashing stack." 2013-04-29 oval:org.mitre.oval:def:10277 V Heap-based buffer overflow in the rmt_read__ function in lib/rtapelib.c in the rmt client functionality in GNU tar before 1.23 and GNU cpio before 2.11 allows remote rmt servers to cause a denial of service (memory corruption) or possibly execute arbitrary code by sending more data than was requested, related to archive filenames that contain a : (colon) character. 2013-04-29
BACK