Ubuntu
tar package

Change logs for tar source package in Precise

  1. Precise (12.04)
  2. Change log 
  • tar (1.26-4ubuntu1.2) precise-security; urgency=medium

  * SECURITY UPDATE: Infinite read loop
    - debian/patches/CVE-2018-20482.patch: Add handling for short read
      condition in sparse_dump_region() of src/sparse.c.
    - CVE-2018-20482
  * SECURITY UPDATE: NULL pointer dereference
    - debian/patches/CVE-2019-9923.patch: Check for NULL return value from
      find_next_block in src/sparse.c.
    - CVE-2019-9923

 -- Avital Ostromich <email address hidden>  Mon, 11 Jan 2021 20:45:20 -0500
  • tar (1.26-4ubuntu1.1) precise-security; urgency=medium

  * SECURITY UPDATE: extract pathname bypass
    - debian/patches/CVE-2016-6321.patch: skip members whose names contain
      ".." in src/extract.c.
    - CVE-2016-6321

 -- Marc Deslauriers <email address hidden>  Thu, 17 Nov 2016 11:07:39 -0500
  • tar (1.26-4ubuntu1) precise; urgency=low

  * Build-depend on gettext:any, since we only need it to run tools at
    build-time.
 -- Colin Watson <email address hidden>   Sat, 31 Mar 2012 01:57:23 +0100
  • tar (1.26-4) unstable; urgency=low


  * mark "Mult-Arch: foreign" to ease crossgrading, closes: #649478
  * hardened build flags patch from Moritz Huehlenhoff, closes: #653722

 -- Bdale Garbee <email address hidden>  Fri, 30 Dec 2011 09:18:11 -0700
  • tar (1.26-3ubuntu1) precise; urgency=low

  * Resynchronise with Debian.  Remaining changes:
    - Mark tar Multi-Arch: foreign.

tar (1.26-3) unstable; urgency=low

  * only run listed03.at on Linux systems synce upstream says it's known to
    fail on BSD, apparently including our kfreebsd variants, closes: #639178

tar (1.26-2) unstable; urgency=low

  * clean up various lintian warnings

tar (1.26-1) unstable; urgency=low

  * new upstream version
  * add a check to the rules file to ensure test suite is not attempted while
    building as root, closes: #596268
 -- Colin Watson <email address hidden>   Sun, 27 Nov 2011 15:20:45 +0000
  • tar (1.25-3ubuntu1) precise; urgency=low

  * Mark tar Multi-Arch: foreign.
 -- Colin Watson <email address hidden>   Mon, 21 Nov 2011 09:36:04 +0000
  • tar (1.25-3) unstable; urgency=low

  * cherry-pick some upstream commits that appear to address open bugs
  * fix for --one-file-system and --listed-incremental together,
    closes: #603371, #604394, #604698
  * fix for FreeBSD symlink incompatibility with POSIX, closes: #602241
 -- Ubuntu Archive Auto-Sync <email address hidden>   Tue,  07 Dec 2010 09:35:23 +0000