[ubuntu/focal-updates] tar 1.30+dfsg-7ubuntu0.20.04.2 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Tue Mar 15 17:58:23 UTC 2022
tar (1.30+dfsg-7ubuntu0.20.04.2) focal-security; urgency=medium
* SECURITY UPDATE: Denial of service (LP: #1912091)
- debian/patches/CVE-2021-20193.patch: in read_header method in
src/list.c, change the return value to be the value of status
and break the execution, jumping to free next_long_name and
next_long_link before returning.
- CVE-2021-20193
Date: 2022-03-15 13:36:09.715668+00:00
Changed-By: Rodrigo Figueiredo Zaiden <rodrigo.zaiden at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/tar/1.30+dfsg-7ubuntu0.20.04.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list