SUSE-SU-2019:14215-1 -- SLES tarID: oval:org.secpod.oval:def:89003270 | Date: (C)2021-02-27 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for tar to version 1.27.1 fixes the following issues: tar 1.27.1 brings following changes * Sparse files with large data * No backticks in quoting * --owner and --group names and numbers * Support for POSIX ACLs, extended attributes and SELinux context. * Passing command line arguments to external commands. * New configure option --enable-gcc-warnings, intended for debugging. * New warning control option --warning=[no-]record-size * New command line option --keep-directory-symlink * Fix unquoting of file names obtained via the -T option. * Fix GNU long link header timestamp . Security issues fixed: - CVE-2019-9923: Fixed a denial of service while parsing certain archives with malformed extended headers in pax_decode_header . - CVE-2018-20482: Fixed a denial of service when the "--sparse" option mishandles file shrinkage during read access .
Platform: |
SUSE Linux Enterprise Server 11 SP4 |