CVE-2022-37705

Name of the Vulnerable Software and Affected Versions Amanda version 3.5.1

Description A privilege escalation flaw was found in Amanda, where the backup user can acquire root privileges. The vulnerable component is the runtar SUID program, a wrapper to run /usr/bin/tar with specific arguments that are controllable by the attacker. This program mishandles the arguments passed to the tar binary, as it expects the argument name and value to be separated with a space, but also supports separation with an equals sign.

Recommendations For Amanda version 3.5.1, consider restricting access to the runtar SUID program until a patch is available. As a temporary workaround, avoid using arguments that separate names and values with an equals sign when interacting with the tar binary through the runtar program.