Stay Connected:

ELSA-2023-2898

ELSA-2023-2898 - libtar security update

Type:SECURITY
Impact:MODERATE
Release Date:2023-05-24

Description


[1.2.20-17]
- fix use-after-free bugs introduced by incorrect memleak fixes (CVE-2021-33640)

[1.2.20-16]
- fix memory leaks through gnu_long{name,link} (CVE-2021-33645 CVE-2021-33646)
- fix out-of-bounds read in gnu_long{name,link} (CVE-2021-33643 CVE-2021-33644)


Related CVEs


CVE-2021-33643
CVE-2021-33645
CVE-2021-33644
CVE-2021-33646

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) libtar-1.2.20-17.el8.src.rpm70627119d56ef76d3e523706c635f4c70acd09b6a6c1af43f97f14f821144860-ol8_aarch64_appstream
libtar-1.2.20-17.el8.src.rpm70627119d56ef76d3e523706c635f4c70acd09b6a6c1af43f97f14f821144860-ol8_aarch64_appstream_developer
libtar-1.2.20-17.el8.src.rpm70627119d56ef76d3e523706c635f4c70acd09b6a6c1af43f97f14f821144860-ol8_aarch64_distro_builder
libtar-1.2.20-17.el8.aarch64.rpmad96956e276e14607e264a1231c55e09bfa08452ba3f5266666b8fc7b1efd422-ol8_aarch64_appstream
libtar-1.2.20-17.el8.aarch64.rpmad96956e276e14607e264a1231c55e09bfa08452ba3f5266666b8fc7b1efd422-ol8_aarch64_appstream_developer
Oracle Linux 8 (x86_64) libtar-1.2.20-17.el8.src.rpm70627119d56ef76d3e523706c635f4c70acd09b6a6c1af43f97f14f821144860-ol8_x86_64_appstream
libtar-1.2.20-17.el8.src.rpm70627119d56ef76d3e523706c635f4c70acd09b6a6c1af43f97f14f821144860-ol8_x86_64_appstream_developer
libtar-1.2.20-17.el8.src.rpm70627119d56ef76d3e523706c635f4c70acd09b6a6c1af43f97f14f821144860-ol8_x86_64_distro_builder
libtar-1.2.20-17.el8.i686.rpmd2c22b594a5673e0cbb234fcb94dca2cb614c5973d2d8a894a0f3a6b100df05d-ol8_x86_64_appstream
libtar-1.2.20-17.el8.i686.rpmd2c22b594a5673e0cbb234fcb94dca2cb614c5973d2d8a894a0f3a6b100df05d-ol8_x86_64_appstream_developer
libtar-1.2.20-17.el8.x86_64.rpm0e90a94181b88676313af359937daadf0f4863ddcfcc7f68403a0cd0663a3dce-ol8_x86_64_appstream
libtar-1.2.20-17.el8.x86_64.rpm0e90a94181b88676313af359937daadf0f4863ddcfcc7f68403a0cd0663a3dce-ol8_x86_64_appstream_developer



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights