Package "tar"

Name: tar


GNU version of the tar archiving utility

Latest version: 1.30+dfsg-7ubuntu0.20.04.1
Release: focal (20.04)
Level: security
Repository: main
Homepage: https://www.gnu.org/software/tar/


Download "tar"

Other versions of "tar" in Focal

Repository Area Version
base universe 1.30+dfsg-7
base main 1.30+dfsg-7
security universe 1.30+dfsg-7ubuntu0.20.04.1
updates main 1.30+dfsg-7ubuntu0.20.04.1
updates universe 1.30+dfsg-7ubuntu0.20.04.1


Version: 1.30+dfsg-7ubuntu0.20.04.1 2021-01-13 19:07:21 UTC

  tar (1.30+dfsg-7ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: NULL pointer dereference
    - debian/patches/CVE-2019-9923.patch: Check for NULL return value from
      find_next_block in src/sparse.c.
    - CVE-2019-9923

 -- Avital Ostromich <email address hidden> Tue, 15 Dec 2020 20:38:40 -0500

CVE-2019-9923 pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended header

About   -   Send Feedback to @ubuntu_updates