Skip to content
Commit af77a413 authored by Rodolfo Quesada Zumbado's avatar Rodolfo Quesada Zumbado Committed by Steve Sakoman
Browse files

tar: CVE-2022-48303 

Fixes CVE-2022-48303 by checking Base-256 encoding is at least
2 bytes long. GNU Tar through 1.34 has a one-byte out-of-bounds
read that results in use of uninitialized memory for a conditional
jump. Exploitation to change the flow of control has not been
demonstrated. The issue occurs in from_header in list.c via a
V7 archive in which mtime has approximately 11 whitespace characters.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2022-48303

Upstream patch:
https://savannah.gnu.org/bugs/?62387
https://git.savannah.gnu.org/cgit/tar.git/patch/src/list.c?id=3da78400eafcccb97e2f2fd4b227ea40d794ede8



(From OE-Core rev: 231360a5)

Signed-off-by: default avatarRodolfo Quesada Zumbado <rodolfo.zumbado@windriver.com>
Signed-off-by: default avatarJoe Slater <joe.slater@windriver.com>
Signed-off-by: default avatarSteve Sakoman <steve@sakoman.com>
Signed-off-by: default avatarRichard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 2a00f15354084cee6b2183fcdbfdfc7826c365da)

Signed-off-by: default avatarRiyaz Khan <Riyaz.Khan@kpit.com>
Signed-off-by: default avatarRiyaz Khan <rak3033@gmail.com>
Signed-off-by: default avatarSteve Sakoman <steve@sakoman.com>
parent d7c7e9ac
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment