Ubuntu Update For Tar Vulnerability USN-506-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-506-1

Solution

Please Install the Updated Packages.

Insight

Dmitry V. Levin discovered that tar did not correctly detect the &quot ..&quot file path element when unpacking archives. If a user or an automated system were tricked into unpacking a specially crafted tar file, arbitrary files could be overwritten with user privileges.

Affected

tar vulnerability on Ubuntu 6.06 LTS , Ubuntu 6.10 , Ubuntu 7.04

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2007-August/000579.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-4131
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ubuntu Update for compiz-fusion-plugins-main vulnerability USN-688-1
Ubuntu Update for apache2 USN-2299-1
Ubuntu Update for apt USN-1762-1
Ubuntu Update for curl USN-2048-1
Ubuntu Update for cups-filters USN-2143-1

Ubuntu Update for tar vulnerability USN-506-1

Take action and discover your vulnerabilities