FrSIRT - Mandriva Security Update Fixes tar "safer_name_suffix()" Buffer Overflow / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Mandriva Security Update Fixes tar "safer_name_suffix()" Buffer Overflow

Title : Mandriva Security Update Fixes tar "safer_name_suffix()" Buffer Overflow
Advisory ID : FrSIRT/ADV-2007-3511
CVE ID : CVE-2007-4476
Rated as : Moderate Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-10-16

Advisory Details

Description

Affected Products

Solution

References

Technical Description

A vulnerability has been identified in Mandriva, which could be exploited by attackers to cause a denial of service or execute arbitrary code [...]

Solution

Upgrade the affected packages :

Mandriva Linux 2007.0:
ad9831bdc61bfd45b4236baf91ba303b 2007.0/i586/tar-1.15.91-1.3mdv2007.0.i586.rpm
799e95edad373e229f27ac662a2803c7 2007.0/SRPMS/tar-1.15.91-1.3mdv2007.0.src.rpm

Mandriva Linux 2007.0/X86_64:
a7ca270e229a7a66e3945aa27ebe5574 2007.0/x86_64/tar-1.15.91-1.3mdv2007.0.x86_64.rpm
799e95edad373e229f27ac662a2803c7 2007.0/SRPMS/tar-1.15.91-1.3mdv2007.0.src.rpm

Mandriva Linux 2007.1:
ad38128760a1d444cb7f92b88d0fa7e3 2007.1/i586/tar-1.16-3.2mdv2007.1.i586.rpm
d8be92eefacc8b999f3021942c1e9776 2007.1/SRPMS/tar-1.16-3.2mdv2007.1.src.rpm

Mandriva Linux 2007.1/X86_64:
90dff66308016f17f03558d4ba550387 2007.1/x86_64/tar-1.16-3.2mdv2007.1.x86_64.rpm
d8be92eefacc8b999f3021942c1e9776 2007.1/SRPMS/tar-1.16-3.2mdv2007.1.src.rpm

Mandriva Linux 2008.0:
e81d250db24d4f5dd935986dece9f7f0 2008.0/i586/tar-1.18-1.1mdv2008.0.i586.rpm
4dd90e75bf8d363ed44e1bd7346d42cf 2008.0/SRPMS/tar-1.18-1.1mdv2008.0.src.rpm

Mandriva Linux 2008.0/X86_64:
16e3f71fc1b9b2fef42378e025d93ea8 2008.0/x86_64/tar-1.18-1.1mdv2008.0.x86_64.rpm
4dd90e75bf8d363ed44e1bd7346d42cf 2008.0/SRPMS/tar-1.18-1.1mdv2008.0.src.rpm

Corporate 4.0:
ae6c4f628deac215fc00421176245fca corporate/4.0/i586/tar-1.15.1-5.4.20060mlcs4.i586.rpm
00e37ea23dc4f0218ccfed4edbe47bf2 corporate/4.0/SRPMS/tar-1.15.1-5.4.20060mlcs4.src.rpm

Corporate 4.0/X86_64:
ea73607c5f7b4d32cb7c158ffb9fb366 corporate/4.0/x86_64/tar-1.15.1-5.4.20060mlcs4.x86_64.rpm
00e37ea23dc4f0218ccfed4edbe47bf2 corporate/4.0/SRPMS/tar-1.15.1-5.4.20060mlcs4.src.rpm

ChangeLog

2007-10-16 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities
	Cisco Secure ACS EAP Remote Denial Of Service Vulnerability
	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability
	Cisco UCM Denial of Service and Authentication Bypass Vulnerabilities
	Cisco Intrusion Prevention System Jumbo Frame Vulnerability
	Cisco VPN Client Deterministic Network Enhancer Privilege Escalation

	Oracle Products Multiple Code Execution and Security Bypass Issues
	Oracle Products Command Execution and SQL Injection Vulnerabilities
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle Database "PITRIG_DROPMETADATA" Buffer Overflow Vulnerability
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle JInitiator ActiveX Control Multiple Remote Buffer Overflow Vulnerabilities
	Oracle Products Multiple Remote Command Execution and SQL Injection Vulnerabilities

	Microsoft Visual Studio "Msmask32" Code Execution Vulnerability
	Microsoft PowerPoint Command Execution Vulnerabilities (MS08-051)
	Microsoft Windows Messenger Data Disclosure (MS08-050)
	Microsoft Windows Event System Code Execution (MS08-049)
	Microsoft Outlook and Mail Security Bypass Vulnerability (MS08-048)
	Microsoft Windows IPsec Policy Data Disclosure Vulnerability (MS08-047)
	Microsoft Windows MSCMS Code Execution Vulnerability (MS08-046)