exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 31

RLSA-2023:2898

около 2 месяцев назад

Moderate: libtar security update

EPSS: Низкий

ELSA-2023-2898

больше 2 лет назад

ELSA-2023-2898: libtar security update (MODERATE)

EPSS: Низкий

ROS-20250424-10

10 месяцев назад

Множественные уязвимости libtar

CVSS3: 9.1

EPSS: Низкий

CVE-2021-33643

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.

CVSS3: 9.1

EPSS: Низкий

CVE-2021-33643

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.

CVSS3: 7.4

EPSS: Низкий

CVE-2021-33643

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.

CVSS3: 9.1

EPSS: Низкий

CVE-2021-33643

больше 3 лет назад

CVSS3: 9.1

EPSS: Низкий

CVE-2021-33643

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct ...

CVSS3: 9.1

EPSS: Низкий

GHSA-j7g9-fcw9-wxcf

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.

CVSS3: 9.1

EPSS: Низкий

BDU:2025-05004

больше 3 лет назад

Уязвимость пакета libtar, связанная с чтением вне границ памяти, позволяющая нарушителю получить доступ к конфиденциальной информации1

CVSS3: 9.1

EPSS: Низкий

CVE-2021-33644

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.

CVSS3: 8.1

EPSS: Низкий

CVE-2021-33644

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.

CVSS3: 6.8

EPSS: Низкий

CVE-2021-33644

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.

CVSS3: 8.1

EPSS: Низкий

CVE-2021-33644

больше 3 лет назад

CVSS3: 8.1

EPSS: Низкий

CVE-2021-33644

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct ...

CVSS3: 8.1

EPSS: Низкий

GHSA-f326-p7mm-52h2

больше 3 лет назад

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.

CVSS3: 8.1

EPSS: Низкий

BDU:2025-05003

больше 3 лет назад

Уязвимость пакета libtar, связанная с чтением вне границ памяти, позволяющая нарушителю получить доступ к конфиденциальной информации

CVSS3: 8.1

EPSS: Низкий

CVE-2021-33646

больше 3 лет назад

The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak.

CVSS3: 7.5

EPSS: Низкий

CVE-2021-33646

больше 3 лет назад

The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak.

CVSS3: 7.5

EPSS: Низкий

CVE-2021-33646

больше 3 лет назад

The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak.

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
RLSA-2023:2898 Moderate: libtar security update			около 2 месяцев назад
ELSA-2023-2898 ELSA-2023-2898: libtar security update (MODERATE)			больше 2 лет назад
ROS-20250424-10 Множественные уязвимости libtar	CVSS3: 9.1		10 месяцев назад
CVE-2021-33643 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.	CVSS3: 9.1	0% Низкий	больше 3 лет назад
CVE-2021-33643 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.	CVSS3: 7.4	0% Низкий	больше 3 лет назад
CVE-2021-33643 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.	CVSS3: 9.1	0% Низкий	больше 3 лет назад
CVE-2021-33643	CVSS3: 9.1	0% Низкий	больше 3 лет назад
CVE-2021-33643 An attacker who submits a crafted tar file with size in header struct ...	CVSS3: 9.1	0% Низкий	больше 3 лет назад
GHSA-j7g9-fcw9-wxcf An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.	CVSS3: 9.1	0% Низкий	больше 3 лет назад
BDU:2025-05004 Уязвимость пакета libtar, связанная с чтением вне границ памяти, позволяющая нарушителю получить доступ к конфиденциальной информации1	CVSS3: 9.1	0% Низкий	больше 3 лет назад
CVE-2021-33644 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.	CVSS3: 8.1	0% Низкий	больше 3 лет назад
CVE-2021-33644 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.	CVSS3: 6.8	0% Низкий	больше 3 лет назад
CVE-2021-33644 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.	CVSS3: 8.1	0% Низкий	больше 3 лет назад
CVE-2021-33644	CVSS3: 8.1	0% Низкий	больше 3 лет назад
CVE-2021-33644 An attacker who submits a crafted tar file with size in header struct ...	CVSS3: 8.1	0% Низкий	больше 3 лет назад
GHSA-f326-p7mm-52h2 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.	CVSS3: 8.1	0% Низкий	больше 3 лет назад
BDU:2025-05003 Уязвимость пакета libtar, связанная с чтением вне границ памяти, позволяющая нарушителю получить доступ к конфиденциальной информации	CVSS3: 8.1	0% Низкий	больше 3 лет назад
CVE-2021-33646 The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak.	CVSS3: 7.5	0% Низкий	больше 3 лет назад
CVE-2021-33646 The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak.	CVSS3: 7.5	0% Низкий	больше 3 лет назад
CVE-2021-33646 The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak.	CVSS3: 7.5	0% Низкий	больше 3 лет назад

Уязвимостей на страницу