CVE-2021-33640

Name of the Vulnerable Software and Affected Versions libtar (affected versions not specified)

Description The issue arises after tar close() is called, where libtar.c releases the memory pointed to by pointer t. However, the list() function continues to use pointer t, specifically in the call to free longlink longname(t->th buf), resulting in the use of released memory, which is a use-after-free condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.