Ubuntu Security Notice 5900-2 - USN-5900-1 fixed vulnerabilities in tar. This update fixes it to Ubuntu 23.04. It was discovered that tar incorrectly handled certain files. An attacker could possibly use this issue to expose sensitive information or cause a crash.
87fb34d060288a40c1867b32f1219a1049b653da41cf71321d54f8b56973182e=========================================================================
Ubuntu Security Notice USN-5900-2
May 22, 2023
tar vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 23.04
Summary:
tar could be made to crash or expose sensitive information
if it received a specially crafted file.
Software Description:
- tar: GNU version of the tar archiving utility
Details:
USN-5900-1 fixed vulnerabilities in tar. This update fixes it to Ubuntu 23.04.
Original advisory details:
It was discovered that tar incorrectly handled certain files.
An attacker could possibly use this issue to expose sensitive information
or cause a crash.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 23.04:
tar 1.34+dfsg-1.2ubuntu0.1
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-5900-2
https://ubuntu.com/security/notices/USN-5900-1
CVE-2022-48303
Package Information:
https://launchpad.net/ubuntu/+source/tar/1.34+dfsg-1.2ubuntu0.1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed