Re: Security bug: tar allows to overwrite arbitrary file when extracting

bug-gnu-utils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security bug: tar allows to overwrite arbitrary file when extracting

From:	Paul Eggert
Subject:	Re: Security bug: tar allows to overwrite arbitrary file when extracting
Date:	Wed, 27 Jun 2001 17:07:28 -0700 (PDT)

> From: Mikulas Patocka <address@hidden>
> Date: Mon, 25 Jun 2001 18:11:36 +0200 (CEST)
> 
> Is this security bug? Or is it intended behaviour?

It is a security bug, and it is not the intended behavior.
I could not reproduce the bug under Solaris 8, though.
Perhaps there is a difference in the way the Linux kernel works?
Can you investigate this?

[Prev in Thread]

Current Thread

[Next in Thread]

Security bug: tar allows to overwrite arbitrary file when extracting, Mikulas Patocka, 2001/06/25
- Re: Security bug: tar allows to overwrite arbitrary file when extracting, Paul Eggert <=
  - Re: Security bug: tar allows to overwrite arbitrary file when extracting, Mikulas Patocka, 2001/06/28
    - Re: Security bug: tar allows to overwrite arbitrary file when extracting, Paul Eggert, 2001/06/29
    - Re: Security bug: tar allows to overwrite arbitrary file when extracting, Eli Zaretskii, 2001/06/30
    - Re: Security bug: tar allows to overwrite arbitrary file when extracting, Paul Eggert, 2001/06/30
    - Re: Security bug: tar allows to overwrite arbitrary file when extracting, Eli Zaretskii, 2001/06/30
    - Re: Security bug: tar allows to overwrite arbitrary file when extracting, Mikulas Patocka, 2001/06/30

Prev by Date: Re: BUG: binutils: strip -o
Next by Date: binutils-2.11.2 packaging bug
Previous by thread: Security bug: tar allows to overwrite arbitrary file when extracting
Next by thread: Re: Security bug: tar allows to overwrite arbitrary file when extracting
Index(es):
- Date
- Thread