An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
07 Nov 2023, 03:35
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2022-08-10 20:15
Updated : 2024-02-28 19:29
NVD link : CVE-2021-33644
Mitre link : CVE-2021-33644
CVE.ORG link : CVE-2021-33644
JSON object : View
Products Affected
fedoraproject
- fedora
feep
- libtar
huawei
- openeuler
CWE
CWE-125
Out-of-bounds Read