CVE 2007-4476
Buffer overflow in the safer_name_suffix function in GNU tar has unspecified attack vectors and impact, resulting in a "crashing stack."
Related bugs and status
CVE-2007-4476 (Candidate) is related to these bugs:
Bug #161173: [CVE-2007-4476] cpio is affected by this CVE as tar.
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 161173 | [CVE-2007-4476] cpio is affected by this CVE as tar. | cpio (Ubuntu) | Undecided | Fix Released | ||
| 161173 | [CVE-2007-4476] cpio is affected by this CVE as tar. | cpio (Ubuntu Dapper) | Undecided | Fix Released | ||
| 161173 | [CVE-2007-4476] cpio is affected by this CVE as tar. | cpio (Ubuntu Edgy) | Undecided | Invalid | ||
| 161173 | [CVE-2007-4476] cpio is affected by this CVE as tar. | cpio (Ubuntu Gutsy) | Undecided | Fix Released | ||
| 161173 | [CVE-2007-4476] cpio is affected by this CVE as tar. | cpio (Ubuntu Feisty) | Undecided | Fix Released | ||
| 161173 | [CVE-2007-4476] cpio is affected by this CVE as tar. | Fedora | Low | Fix Released | ||
Bug #163831: [cpio] buffer overflow vulnerability
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 163831 | [cpio] buffer overflow vulnerability | cpio (Ubuntu) | Undecided | New | ||
Bug #180299: [tar] [CVE-2007-4476] Buffer overflow
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 180299 | [tar] [CVE-2007-4476] Buffer overflow | tar (Ubuntu) | Low | Fix Released | ||
| 180299 | [tar] [CVE-2007-4476] Buffer overflow | tar (Gentoo Linux) | High | Fix Released | ||
| 180299 | [tar] [CVE-2007-4476] Buffer overflow | tar (Debian) | Unknown | Fix Released | ||
| 180299 | [tar] [CVE-2007-4476] Buffer overflow | Fedora | Low | Fix Released | ||
| 180299 | [tar] [CVE-2007-4476] Buffer overflow | tar (Ubuntu Dapper) | Undecided | Fix Released | ||
| 180299 | [tar] [CVE-2007-4476] Buffer overflow | tar (Ubuntu Gutsy) | Undecided | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
