Количество 9
Количество 9
BDU:2025-05004
Уязвимость пакета libtar, связанная с чтением вне границ памяти, позволяющая нарушителю получить доступ к конфиденциальной информации1
CVE-2021-33643
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.
CVE-2021-33643
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.
CVE-2021-33643
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.
CVE-2021-33643
CVE-2021-33643
An attacker who submits a crafted tar file with size in header struct ...
GHSA-j7g9-fcw9-wxcf
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.
ROS-20250424-10
Множественные уязвимости libtar
ELSA-2023-2898
ELSA-2023-2898: libtar security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-05004 Уязвимость пакета libtar, связанная с чтением вне границ памяти, позволяющая нарушителю получить доступ к конфиденциальной информации1 | CVSS3: 9.1 | 0% Низкий | почти 3 года назад |
 | CVE-2021-33643 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read. | CVSS3: 9.1 | 0% Низкий | почти 3 года назад |
 | CVE-2021-33643 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read. | CVSS3: 7.4 | 0% Низкий | почти 3 года назад |
 | CVE-2021-33643 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read. | CVSS3: 9.1 | 0% Низкий | почти 3 года назад |
 | CVSS3: 9.1 | 0% Низкий | почти 3 года назад | |
| CVE-2021-33643 An attacker who submits a crafted tar file with size in header struct ... | CVSS3: 9.1 | 0% Низкий | почти 3 года назад |
| GHSA-j7g9-fcw9-wxcf An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read. | CVSS3: 9.1 | 0% Низкий | почти 3 года назад |
 | ROS-20250424-10 Множественные уязвимости libtar | CVSS3: 9.1 | около 2 месяцев назад | |
| ELSA-2023-2898 ELSA-2023-2898: libtar security update (MODERATE) | около 2 лет назад |
Уязвимостей на страницу