Mandriva Linux Security Advisory : libtar (MDVSA-2013:253)
Medium Nessus Plugin ID 70520
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated libtar packages fixes security vulnerability :
Two heap-based buffer overflow flaws were found in the way libtar handled certain archives. If a user were tricked into expanding a specially crafted archive, it could cause the libtar executable or an application using libtar to crash or, potentially, execute arbitrary code (CVE-2013-4397).
SolutionUpdate the affected libtar and / or libtar-devel packages.