Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2010-0624

Heap-based buffer overflow in the rmt_read__ function in lib/rtapelib.c in the rmt client functionality in GNU tar before 1.23 and GNU cpio before 2.11 allows remote rmt servers to cause a denial of service (memory corruption) or possibly execute arbitrary code by sending more data than was requested, related to archive filenames that contain a : (colon) character.

Related bugs and status

CVE-2010-0624 (Candidate) is related to these bugs:

Bug #214942: cpio 2.9 drops directory permissions and ownership

Summary				In	Importance	Status
	214942	cpio 2.9 drops directory permissions and ownership		cpio (Ubuntu)	Low	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.agrs.tu-ber...
CONFIRM: https://bugzilla.redha...
FEDORA: FEDORA-2010-4309
FEDORA: FEDORA-2010-4321
REDHAT: RHSA-2010:0141
REDHAT: RHSA-2010:0142
REDHAT: RHSA-2010:0144
REDHAT: RHSA-2010:0145
OSVDB: 62950
SECUNIA: 38869
VUPEN: ADV-2010-0628
VUPEN: ADV-2010-0629
VUPEN: ADV-2010-0639
FEDORA: FEDORA-2010-2895
SECUNIA: 38988
FEDORA: FEDORA-2010-4302
FEDORA: FEDORA-2010-4306
VUPEN: ADV-2010-0728
VUPEN: ADV-2010-0729
MANDRIVA: MDVSA-2010:065
SECUNIA: 39008
VUPEN: ADV-2010-0687
SUSE: SUSE-SR:2010:011
VUPEN: ADV-2010-1107
CONFIRM: https://issues.rpath.c...
GENTOO: GLSA-201111-11
UBUNTU: USN-2456-1
CONFIRM: http://kb.juniper.net/...
CONFIRM: http://kb.juniper.net/...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20101027 rPSA-2010-007...