Oval Definition:	oval:org.opensuse.security:def:20051918
Revision Date: 2023-02-11 Version: 1 Title: CVE-2005-1918 Description: The original patch for a GNU tar directory traversal vulnerability (CVE-2002-0399) in Red Hat Enterprise Linux 3 and 2.1 uses an "incorrect optimization" that allows user-assisted attackers to overwrite arbitrary files via a crafted tar file, probably involving "/../" sequences with a leading "/". Family: unix Class: vulnerability Status: Reference(s): CVE-2005-1918 Mitre CVE-2005-1918 SUSE CVE-2005-1918 SUSE-SR:2006:005 Platform(s): Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 openSUSE Tumbleweed SUSE CORE 9 for AMD64 and Intel EM64T SUSE CORE 9 for IBM POWER SUSE CORE 9 for IBM S/390 31bit SUSE CORE 9 for IBM zSeries 64bit SUSE CORE 9 for Itanium Processor Family SUSE CORE 9 for x86 SUSE Linux Enterprise Micro 5.3 Product(s): Definition Synopsis SUSE Linux Enterprise Micro 5.3 is installed AND tar is not affected Definition Synopsis sles9-nld is installed AND tar less than 1.13.25-325.6 Definition Synopsis core9 is installed AND tar less than 1.13.25-325.6 Definition Synopsis openSUSE Tumbleweed is installed AND Package Information tar-1.34-2.2 is installed OR tar-backup-scripts-1.34-2.2 is installed OR tar-doc-1.34-2.2 is installed OR tar-lang-1.34-2.2 is installed OR tar-rmt-1.34-2.2 is installed OR tar-tests-1.34-2.2 is installed
BACK