Back to bug 2149722
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Marian Rehak | 2022-11-30 17:21:05 UTC | Blocks | 2087269 | |
| Marian Rehak | 2022-11-30 17:23:48 UTC | Depends On | 2149724 | |
| Sage McTaggart | 2022-12-09 20:58:56 UTC | CC | dffrench, gzaronik, jwon, ngough, rgodfrey | |
| Marian Rehak | 2023-01-05 12:56:11 UTC | Depends On | 2158435, 2158432, 2158434, 2158436, 2158433 | |
| Marian Rehak | 2023-01-27 14:13:12 UTC | Doc Text | A flaw was found in the Tar package. When attempting to read files with old V7 tar format with a specially crafted checksum, an invalid memory read may occur, that leads to a conditional jump or move operation on uninitialised memory values. | |
| Guilherme de Almeida Suckevicz | 2023-02-03 17:12:38 UTC | Summary | tar: a heap buffer overflow at from_header() in list.c via specially crafter checksum | CVE-2022-48303 tar: a heap buffer overflow at from_header() in list.c via specially crafter checksum |
| Alias | CVE-2022-48303 | |||
| Paige Jung | 2023-02-03 17:24:15 UTC | Doc Text | A flaw was found in the Tar package. When attempting to read files with old V7 tar format with a specially crafted checksum, an invalid memory read may occur, that leads to a conditional jump or move operation on uninitialised memory values. | A flaw was found in the Tar package. When attempting to read files with old V7 tar format with a specially crafted checksum, an invalid memory read may occur that leads to a conditional jump or move operation on uninitialised memory values. |
| Marian Rehak | 2023-02-10 07:35:05 UTC | Doc Text | A flaw was found in the Tar package. When attempting to read files with old V7 tar format with a specially crafted checksum, an invalid memory read may occur that leads to a conditional jump or move operation on uninitialised memory values. | A flaw was found in the Tar package. When attempting to read files with old V7 tar format with a specially crafted checksum, an invalid memory read may occur that leads to a conditional jump or move operation on uninitialized memory values. |
| Mauro Matteo Cascella | 2023-02-16 20:59:27 UTC | Summary | CVE-2022-48303 tar: a heap buffer overflow at from_header() in list.c via specially crafter checksum | CVE-2022-48303 tar: heap buffer overflow at from_header() in list.c via specially crafted checksum |
| errata-xmlrpc | 2023-02-21 09:24:17 UTC | Link ID | Red Hat Product Errata RHSA-2023:0842 | |
| errata-xmlrpc | 2023-02-28 08:19:14 UTC | Link ID | Red Hat Product Errata RHSA-2023:0959 | |
| Product Security DevOps Team | 2023-02-28 12:15:08 UTC | Resolution | --- | ERRATA |
| Status | NEW | CLOSED | ||
| Last Closed | 2023-02-28 12:15:08 UTC | |||
| Marian Rehak | 2023-05-29 07:04:39 UTC | Doc Text | A flaw was found in the Tar package. When attempting to read files with old V7 tar format with a specially crafted checksum, an invalid memory read may occur that leads to a conditional jump or move operation on uninitialized memory values. | A flaw was found in the Tar package. When attempting to read files with old V7 tar format with a specially crafted checksum, an invalid memory read may occur. An attacker could possibly use this issue to expose sensitive information or cause a crash. |
| Jan Pazdziora | 2023-07-27 11:18:24 UTC | Flags | needinfo?(mmuzila) | |
| CC | jpazdziora | |||
| Gabriel Gaspar Becker | 2023-08-02 12:45:57 UTC | Flags | needinfo?(mrehak) | |
| Matej Mužila | 2023-08-04 11:19:42 UTC | Flags | needinfo?(mmuzila) | |
| Gabriel Gaspar Becker | 2023-08-04 15:16:20 UTC | Flags | needinfo?(mrehak) |
Back to bug 2149722