Vulnerability CVE-2016-6321: Information

Description

Directory traversal vulnerability in the safer_name_suffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended protection mechanism and write to arbitrary files via vectors related to improper sanitization of the file_name parameter, aka POINTYFEATHER.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

URL: https://nvd.nist.gov/vuln/detail/CVE-2016-6321
Published: Dec. 10, 2016
Modified: Feb. 13, 2023
Error type identifier: CWE-22

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
tarsisyphus1.28.0.32.cdf41c-alt11.35.0.20.1cdad4cc-alt1ALT-PU-2015-1845-1150941Fixed
tarp101.28.0.32.cdf41c-alt11.34.0.16.12d67f44-alt1ALT-PU-2015-1845-1150941Fixed
tarp91.28.0.32.cdf41c-alt11.32-alt1ALT-PU-2015-1845-1150941Fixed
tarp81.29.0.19.d061-alt11.29.0.19.d061-alt1ALT-PU-2017-1371-1180955Fixed
tarc10f11.28.0.32.cdf41c-alt11.34.0.16.12d67f44-alt1ALT-PU-2015-1845-1150941Fixed
tarc9f21.28.0.32.cdf41c-alt11.32-alt1ALT-PU-2015-1845-1150941Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
http://packetstormsecurity.com/files/139370/GNU-tar-1.29-Extract-Pathname-Bypass.html
  • Exploit
  • Third Party Advisory
  • VDB Entry
https://sintonen.fi/advisories/tar-extract-pathname-bypass.proper.txt
  • Third Party Advisory
93937
  • Third Party Advisory
  • VDB Entry
20161026 [CSS] POINTYFEATHER / tar extract pathname bypass (CVE-2016-6321)
  • Mailing List
  • Third Party Advisory
[bug-tar] 20161029 Re: [Bug-tar] possible fixes for CVE-2016-6321
  • Mailing List
  • Vendor Advisory
http://git.savannah.gnu.org/cgit/tar.git/commit/?id=7340f67b9860ea0531c1450e5aa261c50f67165d
  • Issue Tracking
  • Patch
20161030 [CSS] POINTYFEATHER / tar extract pathname bypass (CVE-2016-6321) - patch update
  • Mailing List
  • Patch
  • Third Party Advisory
USN-3132-1
    DSA-3702
      GLSA-201611-19
        https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
          https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

              1. Configuration 1

                cpe:2.3:a:gnu:tar:1.26:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.27.1:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.23:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.29:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.25:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.22:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.18:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.19:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.20:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.17:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.27:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.15.90:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.16:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.28:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.14:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.24:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.15.91:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.15:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.15.1:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.21:*:*:*:*:*:*:*
                cpe:2.3:a:gnu:tar:1.16.1:*:*:*:*:*:*:*
            VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
            Version: v24.5.0
            Back to top