Test ID:	1.3.6.1.4.1.25623.1.0.702817
Category:	Debian Local Security Checks
Title:	Debian Security Advisory DSA 2817-1 (libtar - Integer overflow)
Summary:	Timo Warns reported multiple integer overflow vulnerabilities in libtar,;a library for manipulating tar archives, which can result in the;execution of arbitrary code.
Description:	Summary: Timo Warns reported multiple integer overflow vulnerabilities in libtar, a library for manipulating tar archives, which can result in the execution of arbitrary code. Affected Software/OS: libtar on Debian Linux Solution: For the oldstable distribution (squeeze), this problem has been fixed in version 1.2.11-6+deb6u1. For the stable distribution (wheezy), this problem has been fixed in version 1.2.16-1+deb7u1. For the testing distribution (jessie), this problem has been fixed in version 1.2.20-1. For the unstable distribution (sid), this problem has been fixed in version 1.2.20-1. We recommend that you upgrade your libtar packages. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4397 BugTraq ID: 62922 http://www.securityfocus.com/bid/62922 Debian Security Information: DSA-2817 (Google Search) http://www.debian.org/security/2013/dsa-2817 https://lists.feep.net:8080/pipermail/libtar/2013-October/000361.html http://www.openwall.com/lists/oss-security/2013/10/10/4 http://www.openwall.com/lists/oss-security/2013/10/10/6 RedHat Security Advisories: RHSA-2013:1418 http://rhn.redhat.com/errata/RHSA-2013-1418.html http://www.securitytracker.com/id/1029166 http://www.securitytracker.com/id/1040106 http://secunia.com/advisories/55188 http://secunia.com/advisories/55253
Copyright	Copyright (c) 2013 Greenbone Networks GmbH http://greenbone.net

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.