Wind River Support Network

HomeDefectsLIN1022-6006

Fixed

LIN1022-6006 : Security Advisory - tar - CVE-2023-39804

Created: Dec 13, 2023 Updated: Mar 27, 2024

Resolved Date: Dec 18, 2023

Found In Version: 10.22.33.1

Fix Version: 10.22.33.13

Severity: Standard

Applicable for: Wind River Linux LTS 22

Component/s: Userspace

Description

tar: Incorrectly handled extension attributes in PAX archives can lead to a crash.

https://git.savannah.gnu.org/cgit/tar.git/commit/?id=a339f05cd269013fa133d2f148d73f6f7d4247e4

CREATE(Triage):(User=admin) CVE-2023-39804 (https://nvd.nist.gov/vuln/detail/CVE-2023-39804)

CVEs

CVE-2023-39804