PT-2006-6742 · Gnu+1 · Gnu Tar+1

Kees Cook

Published

2006-11-24

Updated

2024-06-15

CVE-2006-6097

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:H/Au:N/C:N/I:P/A:P

Name of the Vulnerable Software and Affected Versions GNU tar versions 1.15.1 through 1.16

Description The issue allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPE NAMES record with a symbolic link. This is due to improper handling by the extract archive function in extract.c and the extract mangle function in mangle.c.

Recommendations For GNU tar versions 1.15.1 through 1.16, consider restricting the use of tar files that contain GNUTYPE NAMES records with symbolic links until a patch is available. As a temporary workaround, avoid using the extract archive function and extract mangle function in extract.c and mangle.c, respectively, to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6097

DSA-1223-1

OPENSUSE-SU-2024:11422-1

RHSA-2006:0749

RHSA-2006_0749

Affected Products

Gnu Tar

Red Hat

PT-2006-6742 · Gnu+1 · Gnu Tar+1

CVE-2006-6097

Related Identifiers

Affected Products

References · 58