Wind River Support Network

HomeDefectsLIN1023-2990
Fixed

LIN1023-2990 : Security Advisory - tar - CVE-2023-39804

Created: Dec 12, 2023    Updated: Dec 19, 2023
Resolved Date: Dec 18, 2023
Found In Version: 10.23.30.1
Fix Version: 10.23.30.4
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

tar: Incorrectly handled extension attributes in PAX archives can lead to a crash.

https://git.savannah.gnu.org/cgit/tar.git/commit/?id=a339f05cd269013fa133d2f148d73f6f7d4247e4

CREATE(Triage):(User=admin) CVE-2023-39804 (https://nvd.nist.gov/vuln/detail/CVE-2023-39804)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube