Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2023:0463-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2023:0463-1

UNKNOWN

Security update for tar

Published Feb 20, 2023

Modified 2 years ago

Fix available

Details

This update for tar fixes the following issues:

CVE-2022-48303: Fixed a one-byte out-of-bounds read that resulted in use of uninitialized memory for a conditional jump (bsc#1207753).

Bug fixes:

Fix hang when unpacking test tarball (bsc#1202436).

Affected Packages

SUSE:Linux Enterprise Micro 5.1tar

Fixed in:

1.34-150000.3.31.1

SUSE:Linux Enterprise Micro 5.2tar

Fixed in:

1.34-150000.3.31.1

SUSE:Linux Enterprise Micro 5.3tar

Fixed in:

1.34-150000.3.31.1

SUSE:Linux Enterprise Module for Basesystem 15 SP4tar

Fixed in:

1.34-150000.3.31.1

SUSE:Linux Enterprise Module for Basesystem 15 SP4tar-lang

Fixed in:

1.34-150000.3.31.1

SUSE:Linux Enterprise Module for Basesystem 15 SP4tar-rmt

Fixed in:

1.34-150000.3.31.1

SUSE:Linux Enterprise Real Time 15 SP3tar

Fixed in:

1.34-150000.3.31.1

SUSE:Linux Enterprise Real Time 15 SP3tar-lang

Fixed in:

1.34-150000.3.31.1

SUSE:Linux Enterprise Real Time 15 SP3tar-rmt

Fixed in:

1.34-150000.3.31.1

openSUSE:Leap 15.4tar

Fixed in:

1.34-150000.3.31.1

openSUSE:Leap 15.4tar-backup-scripts

Fixed in:

1.34-150000.3.31.1

openSUSE:Leap 15.4tar-doc

Fixed in:

1.34-150000.3.31.1

openSUSE:Leap 15.4tar-lang

Fixed in:

1.34-150000.3.31.1

openSUSE:Leap 15.4tar-rmt

Fixed in:

1.34-150000.3.31.1

openSUSE:Leap 15.4tar-tests

Fixed in:

1.34-150000.3.31.1

openSUSE:Leap Micro 5.2tar

Fixed in:

1.34-150000.3.31.1

openSUSE:Leap Micro 5.3tar

Fixed in:

1.34-150000.3.31.1

Timeline

PublishedFeb 20, 2023

ModifiedFeb 20, 2023

SUSE-SU-2023:0463-1

Details

Affected Packages

References

Upstream

Related

Ecosystems

Timeline