VulnerableCode Package Details - pkg:deb/debian/tar@1.27.1-2

Search for packages

Vulnerability	Summary	Fixed by
VCID-bjve-yt21-5uhe Aliases: CVE-2021-20193	A vulnerability in Tar could lead to a Denial of Service condition.	1.34+dfsg-1+deb11u1 Affected by 0 other vulnerabilities.
VCID-hq66-w1de-eqe9 Aliases: CVE-2023-39804	tar: Incorrectly handled extension attributes in PAX archives can lead to a crash	1.34+dfsg-1+deb11u1 Affected by 0 other vulnerabilities.
VCID-pkfu-tkaw-m7ba Aliases: CVE-2022-48303	A vulnerability has been discovered in GNU Tar which may lead to an out of bounds read.	1.34+dfsg-1+deb11u1 Affected by 0 other vulnerabilities.
VCID-rpve-2nqs-mucp Aliases: CVE-2019-9923	tar: null-pointer dereference in pax_decode_header in sparse.c	1.34+dfsg-1+deb11u1 Affected by 0 other vulnerabilities.
VCID-svwr-123p-skeq Aliases: CVE-2018-20482	A vulnerability in Tar could led to a Denial of Service condition.	1.30+dfsg-6 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-vzdf-6u9d-bfax Aliases: CVE-2016-6321	A path traversal attack in Tar may lead to the remote execution of arbitrary code.	1.27.1-2+deb8u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1.29b-1.1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-bjve-yt21-5uhe
Aliases:
CVE-2021-20193

A vulnerability in Tar could lead to a Denial of Service condition.

1.34+dfsg-1+deb11u1
Affected by 0 other vulnerabilities.

VCID-hq66-w1de-eqe9
Aliases:
CVE-2023-39804

tar: Incorrectly handled extension attributes in PAX archives can lead to a crash

1.34+dfsg-1+deb11u1
Affected by 0 other vulnerabilities.

VCID-pkfu-tkaw-m7ba
Aliases:
CVE-2022-48303

A vulnerability has been discovered in GNU Tar which may lead to an out of bounds read.

1.34+dfsg-1+deb11u1
Affected by 0 other vulnerabilities.

VCID-rpve-2nqs-mucp
Aliases:
CVE-2019-9923

tar: null-pointer dereference in pax_decode_header in sparse.c

1.34+dfsg-1+deb11u1
Affected by 0 other vulnerabilities.

VCID-svwr-123p-skeq
Aliases:
CVE-2018-20482

A vulnerability in Tar could led to a Denial of Service condition.

1.30+dfsg-6
Affected by 4 other vulnerabilities.

VCID-vzdf-6u9d-bfax
Aliases:
CVE-2016-6321

A path traversal attack in Tar may lead to the remote execution of arbitrary code.

1.27.1-2+deb8u1
Affected by 6 other vulnerabilities.

1.29b-1.1
Affected by 5 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T23:41:56.134739+00:00	Debian Oval Importer	Affected by	VCID-vzdf-6u9d-bfax	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:51:16.474595+00:00	Debian Oval Importer	Affected by	VCID-bjve-yt21-5uhe	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:31:07.368807+00:00	Debian Oval Importer	Affected by	VCID-svwr-123p-skeq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:11:57.698805+00:00	Debian Oval Importer	Affected by	VCID-pkfu-tkaw-m7ba	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:27:47.983511+00:00	Debian Oval Importer	Affected by	VCID-rpve-2nqs-mucp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:30:19.565329+00:00	Debian Oval Importer	Affected by	VCID-hq66-w1de-eqe9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T13:31:26.723276+00:00	Debian Oval Importer	Affected by	VCID-vzdf-6u9d-bfax	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-11T23:16:42.251230+00:00	Debian Oval Importer	Affected by	VCID-vzdf-6u9d-bfax	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:35:48.805603+00:00	Debian Oval Importer	Affected by	VCID-bjve-yt21-5uhe	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:17:28.705262+00:00	Debian Oval Importer	Affected by	VCID-svwr-123p-skeq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:58:31.585564+00:00	Debian Oval Importer	Affected by	VCID-pkfu-tkaw-m7ba	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:14:58.895404+00:00	Debian Oval Importer	Affected by	VCID-rpve-2nqs-mucp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:18:21.104210+00:00	Debian Oval Importer	Affected by	VCID-hq66-w1de-eqe9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T13:20:07.686659+00:00	Debian Oval Importer	Affected by	VCID-vzdf-6u9d-bfax	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-08T22:50:09.634749+00:00	Debian Oval Importer	Affected by	VCID-vzdf-6u9d-bfax	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:20:55.689770+00:00	Debian Oval Importer	Affected by	VCID-bjve-yt21-5uhe	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:06:01.323217+00:00	Debian Oval Importer	Affected by	VCID-svwr-123p-skeq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:48:06.193865+00:00	Debian Oval Importer	Affected by	VCID-pkfu-tkaw-m7ba	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:07:16.575526+00:00	Debian Oval Importer	Affected by	VCID-rpve-2nqs-mucp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:13:04.467971+00:00	Debian Oval Importer	Affected by	VCID-hq66-w1de-eqe9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T21:56:03.152080+00:00	Debian Oval Importer	Affected by	VCID-vzdf-6u9d-bfax	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0