-
tar (1.26-4ubuntu1.2) precise-security; urgency=medium
* SECURITY UPDATE: Infinite read loop
- debian/patches/CVE-2018-20482.patch: Add handling for short read
condition in sparse_dump_region() of src/sparse.c.
- CVE-2018-20482
* SECURITY UPDATE: NULL pointer dereference
- debian/patches/CVE-2019-9923.patch: Check for NULL return value from
find_next_block in src/sparse.c.
- CVE-2019-9923
-- Avital Ostromich <email address hidden> Mon, 11 Jan 2021 20:45:20 -0500
-
tar (1.26-4ubuntu1.1) precise-security; urgency=medium
* SECURITY UPDATE: extract pathname bypass
- debian/patches/CVE-2016-6321.patch: skip members whose names contain
".." in src/extract.c.
- CVE-2016-6321
-- Marc Deslauriers <email address hidden> Thu, 17 Nov 2016 11:07:39 -0500
-
tar (1.26-4ubuntu1) precise; urgency=low
* Build-depend on gettext:any, since we only need it to run tools at
build-time.
-- Colin Watson <email address hidden> Sat, 31 Mar 2012 01:57:23 +0100
-
tar (1.26-4) unstable; urgency=low
* mark "Mult-Arch: foreign" to ease crossgrading, closes: #649478
* hardened build flags patch from Moritz Huehlenhoff, closes: #653722
-- Bdale Garbee <email address hidden> Fri, 30 Dec 2011 09:18:11 -0700
-
tar (1.26-3ubuntu1) precise; urgency=low
* Resynchronise with Debian. Remaining changes:
- Mark tar Multi-Arch: foreign.
tar (1.26-3) unstable; urgency=low
* only run listed03.at on Linux systems synce upstream says it's known to
fail on BSD, apparently including our kfreebsd variants, closes: #639178
tar (1.26-2) unstable; urgency=low
* clean up various lintian warnings
tar (1.26-1) unstable; urgency=low
* new upstream version
* add a check to the rules file to ensure test suite is not attempted while
building as root, closes: #596268
-- Colin Watson <email address hidden> Sun, 27 Nov 2011 15:20:45 +0000
-
tar (1.25-3ubuntu1) precise; urgency=low
* Mark tar Multi-Arch: foreign.
-- Colin Watson <email address hidden> Mon, 21 Nov 2011 09:36:04 +0000
-
tar (1.25-3) unstable; urgency=low
* cherry-pick some upstream commits that appear to address open bugs
* fix for --one-file-system and --listed-incremental together,
closes: #603371, #604394, #604698
* fix for FreeBSD symlink incompatibility with POSIX, closes: #602241
-- Ubuntu Archive Auto-Sync <email address hidden> Tue, 07 Dec 2010 09:35:23 +0000