Описание
pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers.
Ссылки
- Mailing ListPatchVendor Advisory
- Mailing ListThird Party Advisory
- Permissions RequiredThird Party Advisory
- Issue TrackingPatchThird Party Advisory
- Mailing ListPatchVendor Advisory
- Mailing ListThird Party Advisory
- Permissions RequiredThird Party Advisory
- Issue TrackingPatchThird Party Advisory
Уязвимые конфигурации
EPSS
7.5 High
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
Связанные уязвимости
pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers.
pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers.
pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointe ...
pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers.
Уязвимость архиватора GNU Tar, связанная с недостаточным выделением памяти для операции, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7.5 High
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2