Note: This is an archival copy of Security Sun Alert 273551 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1021680.1.
Solaris 9 Operating System
Solaris 10 Operating System
Date of Workaround Release
Date of Resolved Release
Two security vulnerabilities in GNU tar (see gtar(1)):
Two security vulnerabilities have been found in the GNU tar gtar(1) archiving program bundled with Solaris 9, Solaris 10 and OpenSolaris.
The first issue is a directory traversal vulnerability that may allow a local or remote unprivileged user who provides a specially crafted archive to overwrite arbitrary files which the user executing gtar(1) has permission to modify.
The second issue is a buffer overflow which may allow a local or remote unprivileged user who provides a specially crafted tar archive to execute arbitrary commands with the privileges of the user executing gtar(1) or to cause gtar(1) to crash. The ability to cause a program crash is a type of Denial of Service (DoS).
Additional information regarding these issues is available at:
These issues can occur in the following releases:
$ uname -vNote 2: Solaris 8 does not include support for GNU tar utility and therefore is not impacted by these issues.
There are no predictable symptoms that would indicate the described issues have been exploited on a system.
Until the patches for these issues can be applied, users should avoid using gtar(1) with archives from untrusted sources.
These issues are addressed in the following releases:
23-Mar-2010: Updated Contributing Factors and Resolution sections. Resolved.
18-Oct-2010: Updated for patch clarifications
This solution has no attachment