|
|
GNU TAR and CPIO safer_name_suffix Remote Denial of Service Vulnerability
|
Bugtraq ID:
|
26445
|
|
Class:
|
Failure to Handle Exceptional Conditions
|
|
CVE:
|
CVE-2007-4476
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Nov 14 2007 12:00AM
|
|
Updated:
|
May 05 2008 02:35PM
|
|
Credit:
|
Dmitry V. Levin discovered this issue.
|
|
Vulnerable:
|
SuSE SLES 9
SuSE SLES 8
SuSE SLES 10.SP1
SuSE SLES 10
SuSE SLED 10.SP1
SuSE SLED 10.0
SuSE Linux Desktop 1.0
SuSE Linux 9.3
SuSE Linux 9.2
SuSE Linux 9.1
SuSE Linux 10.3
SuSE Linux 10.2
SuSE Linux 10.1
SuSE Linux 10.0
S.u.S.E. SuSE Linux School Server for i386
S.u.S.E. SUSE LINUX Retail Solution 8.0
S.u.S.E. SUSE Linux Enterprise Server 10 SP1
S.u.S.E. SUSE Linux Enterprise Server 10
S.u.S.E. SUSE Linux Enterprise Desktop 10 SP1
S.u.S.E. SUSE Linux Enterprise Desktop 10
S.u.S.E. Open-Enterprise-Server 0
S.u.S.E. Novell Linux Desktop 1.0
S.u.S.E. Linux Professional 10.0 OSS
S.u.S.E. Linux Professional 10.0
S.u.S.E. Linux Professional 10.2 x86_64
S.u.S.E. Linux Professional 10.2
S.u.S.E. Linux Professional 10.1
S.u.S.E. Linux Personal 10.2 x86_64
S.u.S.E. Linux Personal 10.2
S.u.S.E. Linux Personal 10.1
S.u.S.E. Linux Openexchange Server
S.u.S.E. Linux Enterprise Server 10
S.u.S.E. Linux Desktop 10
S.u.S.E. Linux 10.1 x86-64
S.u.S.E. Linux 10.1 x86
S.u.S.E. Linux 10.1 ppc
S.u.S.E. Linux 10.0 x86-64
S.u.S.E. Linux 10.0 x86
S.u.S.E. Linux 10.0 ppc
MandrakeSoft Multi Network Firewall 2.0
MandrakeSoft Linux Mandrake 2008.0 x86_64
MandrakeSoft Linux Mandrake 2008.0
MandrakeSoft Linux Mandrake 2007.1 x86_64
MandrakeSoft Linux Mandrake 2007.1
MandrakeSoft Linux Mandrake 2007.0 x86_64
MandrakeSoft Linux Mandrake 2007.0
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
MandrakeSoft Corporate Server 4.0
GNU tar 1.15.91
GNU tar 1.15.90
GNU tar 1.15.1
GNU tar 1.14.90
GNU tar 1.13.25
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
Gentoo Linux 1.4 _rc1
+
Gentoo Linux 1.2
+
HP Secure OS software for Linux 1.0
+
MandrakeSoft Corporate Server 1.0.1
+
MandrakeSoft Linux Mandrake 9.0
+
MandrakeSoft Linux Mandrake 8.2 ppc
+
MandrakeSoft Linux Mandrake 8.2
+
MandrakeSoft Linux Mandrake 8.1 ia64
+
MandrakeSoft Linux Mandrake 8.1
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
MandrakeSoft Linux Mandrake 7.2
+
MandrakeSoft Linux Mandrake 7.1
+
MandrakeSoft Single Network Firewall 7.2
+
RedHat Linux 7.3 i386
+
RedHat Linux 7.3
+
RedHat Linux 7.2 ia64
+
RedHat Linux 7.2 i386
+
RedHat Linux 7.2 alpha
+
RedHat Linux 7.2
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 alpha
+
RedHat Linux 7.1
+
RedHat Linux 7.0 sparc
+
RedHat Linux 7.0 i386
+
RedHat Linux 7.0 alpha
+
RedHat Linux 7.0
+
RedHat Linux 6.2 sparc
+
RedHat Linux 6.2 i386
+
RedHat Linux 6.2 alpha
+
RedHat Linux 6.2
+
Sun Linux 5.0
GNU tar 1.13.19
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
RedHat Linux 6.2 sparc
+
RedHat Linux 6.2 i386
+
RedHat Linux 6.2 alpha
+
RedHat Linux 6.2
+
Sun Cobalt Qube 3
+
Sun Cobalt RaQ 3
+
Sun Cobalt RaQ 4
+
Sun Cobalt RaQ 550
+
Sun Cobalt RaQ XTR
+
Sun Linux 5.0.6
+
Sun Linux 5.0.5
+
Sun Linux 5.0.3
+
Sun Linux 5.0
GNU tar 1.13.18
GNU tar 1.13.17
GNU tar 1.13.16
GNU tar 1.13.14
GNU tar 1.13.11
GNU tar 1.13.5
GNU tar 1.13
GNU tar 1.16
GNU tar 1.15
GNU tar 1.14
GNU cpio 2.6
+
Gentoo Linux
+
MandrakeSoft Linux Mandrake 2006.0 x86_64
+
MandrakeSoft Linux Mandrake 2006.0
+
MandrakeSoft Linux Mandrake 10.2 x86_64
+
MandrakeSoft Linux Mandrake 10.2
GNU cpio 2.5.90
GNU cpio 2.5
GNU cpio 2.4.2
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
+
Debian Linux 3.0
GNU cpio 1.3
GNU cpio 1.2
GNU cpio 1.1
GNU cpio 1.0
Gentoo Linux
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
|
|
|
|
Not Vulnerable:
|
|
|
|
