-
tar (1.34+dfsg-1.2ubuntu0.2) lunar-security; urgency=medium
* SECURITY UPDATE: stack overflow via crafted xattr (LP: #2029464)
- debian/patches/CVE-2023-39804.patch: allocate xattr keys and values
on the heap rather than the stack in src/xheader.c
- CVE-2023-39804
-- Alex Murray <email address hidden> Tue, 05 Dec 2023 15:45:21 +1030
-
tar (1.34+dfsg-1.2ubuntu0.1) lunar-security; urgency=medium
* SECURITY UPDATE: one-byte out of bounds
- debian/patches/CVE-2022-48303.patch: check limit in
src/list.c.
- CVE-2022-48303
-- Leonidas Da Silva Barbosa <email address hidden> Thu, 18 May 2023 17:50:39 -0300
-
tar (1.34+dfsg-1.2) unstable; urgency=medium
* Non-maintainer upload.
* Build with lfs and -D_TIME_BITS=64 on 32 bits archs (Closes: #1026204)
Thanks to Andreas Henriksson and Helge Deller
-- Paul Gevers <email address hidden> Thu, 06 Apr 2023 16:25:47 +0200
-
tar (1.34+dfsg-1.1) unstable; urgency=medium
* Non-maintainer upload
[ Mechtilde ]
* [730f266] Improved d/copyright with patch
from Bastian Germann <email address hidden> (Closes: #1024084)
-- Mechtilde Stehmann <email address hidden> Sun, 20 Nov 2022 15:52:41 +0100
-
tar (1.34+dfsg-1build3) jammy; urgency=high
* No change rebuild for ppc64el baseline bump.
-- Julian Andres Klode <email address hidden> Fri, 25 Mar 2022 10:52:14 +0100