sledp3-tar

Security update for tar

A malicious remote tape server could cause a buffer overflow in tar. In order to exploit that an attacker would have to trick the victim to extract a file that causes tar to open a connection to the rmt server (CVE-2010-0624). It's advisable to always use tar's --force-local local option to avoid such tricks. security tar x86_64 e8d7b1653a705de60492c5ba8e7877dfd8c5492d