Gentoo Linux Security Advisory 202006-14 - A buffer overflow in the PEAR module Archive_Tar might allow local or remote attacker(s) to execute arbitrary code. Versions below 1.4.5 are affected.
64f72cb7244e378c12f60f38642177b264964ab70212fd0dd3a599d6d481054d
Debian Linux Security Advisory 4378-1 - Fariskhi Vidyan discovered that the PEAR Archive_Tar package for handling tar files in PHP is prone to a PHP object injection vulnerability, potentially allowing a remote attacker to execute arbitrary code.
7e4ef23ca8470300ddac7bad2d8bad6f040e2ce16dd0123ba1e84084b83ec707
Ubuntu Security Notice 3857-1 - Fariskhi Vidyan discovered that PEAR Archive_Tar incorrectly handled certain archive paths. A remote attacker could possibly use this issue to execute arbitrary code.
1d5566ce471b7460908ec1e4e46ec21960e749406646a4ae8f31b0ce933d9dd8
PEAR Archive_Tar versions prior to 1.4.4 suffers from a php object injection vulnerability.
cad5188ebafd78a5e0e10621a684eddce0406c02de57368d07686cc16c02a522