CVE-2023-39804

Updated: 2024-03-27 21:04:25.678523

Description:

In GNU tar before 1.35, mishandled extension attributes in a PAX archive can lead to an application crash in xheader.c.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x NONE 0
CVSS Version 3.x LOW 3.3

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU tar 1.34 3.3 LOW Ignored 2023-12-18 10:08:41
CentOS 6 ELS tar 1.23-15 3.3 LOW Ignored 2023-12-18 10:08:42
CentOS 7 ELS tar 1.26 3.3 LOW Ignored 2023-12-18 10:08:41
CentOS 8.4 ELS tar 1.30-5 3.3 LOW Ignored 2023-12-18 13:08:30
CentOS 8.5 ELS tar 1.30-5 3.3 LOW Ignored 2023-12-18 10:08:42
CloudLinux 6 ELS tar 1.23-15 3.3 LOW Ignored 2023-12-18 10:08:42
Oracle Linux 6 ELS tar 1.23-15 3.3 LOW Ignored 2023-12-18 10:08:41
Ubuntu 16.04 ELS tar 1.28-2.1 3.3 LOW Released CLSA-2024:1706026767 2024-01-23 13:09:27
Ubuntu 18.04 ELS tar 1.29b-2 3.3 LOW Released CLSA-2024:1710436683 2024-03-14 14:10:35