ELSA-2026-30856

ULN >
Oracle Linux Errata repository >
ELSA-2026-30856

ELSA-2026-30856 - perl-Archive-Tar security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-06-29

Description

[2.38-6.1]
- Fix CVE-2026-42496: validate symlink and hardlink targets in secure
extract mode
- Resolves: RHEL-181662

Related CVEs

CVE-2026-42496

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	perl-Archive-Tar-2.38-6.el9_8.1.src.rpm	2347188f4830ffa420218c0220250e5b77baf6898afc48c5006b055abc7d66c6	-	ol9_aarch64_appstream
	perl-Archive-Tar-2.38-6.el9_8.1.noarch.rpm	9d51e6c45f48d27b1bfc63b0ca0ba409230f67ccd120826fd938f48b7e168955	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	perl-Archive-Tar-2.38-6.el9_8.1.src.rpm	2347188f4830ffa420218c0220250e5b77baf6898afc48c5006b055abc7d66c6	-	ol9_x86_64_appstream
	perl-Archive-Tar-2.38-6.el9_8.1.noarch.rpm	9d51e6c45f48d27b1bfc63b0ca0ba409230f67ccd120826fd938f48b7e168955	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691