Bug 1207753 (CVE-2022-48303) - VUL-0: CVE-2022-48303: tar: GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of control has not been demonstrated. The issue occurs in
Summary: VUL-0: CVE-2022-48303: tar: GNU Tar through 1.34 has a one-byte out-of-bounds...
Status: RESOLVED FIXED
Alias: CVE-2022-48303
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Danilo Spinella
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/355635/
Whiteboard: CVSSv3.1:SUSE:CVE-2022-48303:4.3:(AV:...
Keywords:
Depends on:
Blocks:
 
Reported: 2023-01-30 09:30 UTC by Stoyan Manolov
Modified: 2023-04-06 10:33 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Stoyan Manolov 2023-01-30 09:30:44 UTC
CVE-2022-48303

GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of
uninitialized memory for a conditional jump. Exploitation to change the flow of
control has not been demonstrated. The issue occurs in from_header in list.c via
a V7 archive in which mtime has approximately 11 whitespace characters.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-48303
https://www.cve.org/CVERecord?id=CVE-2022-48303
https://savannah.gnu.org/bugs/?62387
https://savannah.gnu.org/patch/?10307
Comment 4 Swamp Workflow Management 2023-02-17 14:34:18 UTC
SUSE-SU-2023:0441-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 1207753
CVE References: CVE-2022-48303
JIRA References: 
Sources used:
SUSE Linux Enterprise Server 12-SP5 (src):    tar-1.27.1-15.18.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 5 Swamp Workflow Management 2023-02-20 20:17:25 UTC
SUSE-SU-2023:0463-1: An update that solves one vulnerability and has one errata is now available.

Category: security (moderate)
Bug References: 1202436,1207753
CVE References: CVE-2022-48303
JIRA References: 
Sources used:
openSUSE Leap Micro 5.3 (src):    tar-1.34-150000.3.31.1
openSUSE Leap Micro 5.2 (src):    tar-1.34-150000.3.31.1
openSUSE Leap 15.4 (src):    tar-1.34-150000.3.31.1
SUSE Linux Enterprise Realtime Extension 15-SP3 (src):    tar-1.34-150000.3.31.1
SUSE Linux Enterprise Module for Basesystem 15-SP4 (src):    tar-1.34-150000.3.31.1
SUSE Linux Enterprise Micro 5.3 (src):    tar-1.34-150000.3.31.1
SUSE Linux Enterprise Micro 5.2 (src):    tar-1.34-150000.3.31.1
SUSE Linux Enterprise Micro 5.1 (src):    tar-1.34-150000.3.31.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 6 Maintenance Automation 2023-02-21 12:30:23 UTC
SUSE-SU-2023:0463-1: An update that solves one vulnerability and has one fix can now be installed.

Category: security (moderate)
Bug References: 1202436, 1207753
CVE References: CVE-2022-48303
Sources used:
openSUSE Leap Micro 5.3 (src): tar-1.34-150000.3.31.1
openSUSE Leap 15.4 (src): tar-1.34-150000.3.31.1
SUSE Linux Enterprise Micro for Rancher 5.3 (src): tar-1.34-150000.3.31.1
SUSE Linux Enterprise Micro 5.3 (src): tar-1.34-150000.3.31.1
Basesystem Module 15-SP4 (src): tar-1.34-150000.3.31.1
SUSE Linux Enterprise Real Time 15 SP3 (src): tar-1.34-150000.3.31.1
SUSE Linux Enterprise Micro 5.1 (src): tar-1.34-150000.3.31.1
SUSE Linux Enterprise Micro 5.2 (src): tar-1.34-150000.3.31.1
SUSE Linux Enterprise Micro for Rancher 5.2 (src): tar-1.34-150000.3.31.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 7 OBSbugzilla Bot 2023-02-28 14:55:04 UTC
This is an autogenerated message for OBS integration:
This bug (1207753) was mentioned in
https://build.opensuse.org/request/show/1068196 Factory / tar