vulnerability
Ubuntu: USN-3132-1 (CVE-2016-6321): tar vulnerability
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
5 | (AV:N/AC:L/Au:N/C:N/I:P/A:N) | Nov 21, 2016 | Nov 21, 2016 | Apr 14, 2025 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Nov 21, 2016
Added
Nov 21, 2016
Modified
Apr 14, 2025
Description
Harry Sintonen discovered that tar incorrectly handled extracting files
when path names are specified on the command line. If a user or automated
system were tricked into processing a specially crafted archive, an
attacker could possibly overwrite arbitrary files.
Solution
ubuntu-upgrade-tar

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.