This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
Re: SECURITY: tar (CVE-2006-0300)
- From: ericblake at comcast dot net (Eric Blake)
- To: cygwin-apps at cygwin dot com
- Date: Fri, 10 Mar 2006 21:09:14 +0000
- Subject: Re: SECURITY: tar (CVE-2006-0300)
> A malicious tar archive could trigger a Buffer overflow in GNU tar,
> potentially resulting in the execution of arbitrary code.
Thanks for the heads up. I'll get on that right away, although
it may be a day or two before I have the next compilation
uploaded.
--
Eric Blake
volunteer cygwin tar maintainer