GNU Tar vulnerability
Josh Paetzel
josh at tcbug.org
Tue Nov 28 11:33:56 PST 2006
On Tuesday 28 November 2006 11:17, Sergey Matveychuk wrote:
> Please, note: http://secunia.com/advisories/23115/
>
> A port maintainer CC'ed.
This is one of those things where the impact is hard to determine
because the link doesn't really give much info. Ok, you can
overwrite arbitrary files.....ANY file? Or just files that the user
running gtar has write access to? If it's the first case then that's
huge. If it's the second case then who really cares.
--
Thanks,
Josh Paetzel
More information about the freebsd-security
mailing list