Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/tar@1.27.1-2%2Bdeb8u1
purl pkg:deb/debian/tar@1.27.1-2%2Bdeb8u1
Next non-vulnerable version 1.34+dfsg-1+deb11u1
Latest non-vulnerable version 1.34+dfsg-1+deb11u1
Risk 3.4
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-bjve-yt21-5uhe
Aliases:
CVE-2021-20193
A vulnerability in Tar could lead to a Denial of Service condition.
1.34+dfsg-1+deb11u1
Affected by 0 other vulnerabilities.
VCID-hq66-w1de-eqe9
Aliases:
CVE-2023-39804
tar: Incorrectly handled extension attributes in PAX archives can lead to a crash
1.34+dfsg-1+deb11u1
Affected by 0 other vulnerabilities.
VCID-pkfu-tkaw-m7ba
Aliases:
CVE-2022-48303
A vulnerability has been discovered in GNU Tar which may lead to an out of bounds read.
1.34+dfsg-1+deb11u1
Affected by 0 other vulnerabilities.
VCID-rpve-2nqs-mucp
Aliases:
CVE-2019-9923
tar: null-pointer dereference in pax_decode_header in sparse.c
1.34+dfsg-1+deb11u1
Affected by 0 other vulnerabilities.
VCID-svwr-123p-skeq
Aliases:
CVE-2018-20482
A vulnerability in Tar could led to a Denial of Service condition.
1.30+dfsg-6
Affected by 4 other vulnerabilities.
VCID-vzdf-6u9d-bfax
Aliases:
CVE-2016-6321
A path traversal attack in Tar may lead to the remote execution of arbitrary code.
1.29b-1.1
Affected by 5 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-vzdf-6u9d-bfax A path traversal attack in Tar may lead to the remote execution of arbitrary code. CVE-2016-6321

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T23:41:56.138934+00:00 Debian Oval Importer Affected by VCID-vzdf-6u9d-bfax https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:51:16.478287+00:00 Debian Oval Importer Affected by VCID-bjve-yt21-5uhe https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:31:07.372219+00:00 Debian Oval Importer Affected by VCID-svwr-123p-skeq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:11:57.700308+00:00 Debian Oval Importer Affected by VCID-pkfu-tkaw-m7ba https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:27:47.987206+00:00 Debian Oval Importer Affected by VCID-rpve-2nqs-mucp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:30:19.568756+00:00 Debian Oval Importer Affected by VCID-hq66-w1de-eqe9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T13:31:26.726509+00:00 Debian Oval Importer Fixing VCID-vzdf-6u9d-bfax https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.4.0
2026-04-11T23:16:42.254745+00:00 Debian Oval Importer Affected by VCID-vzdf-6u9d-bfax https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:35:48.809534+00:00 Debian Oval Importer Affected by VCID-bjve-yt21-5uhe https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:17:28.709839+00:00 Debian Oval Importer Affected by VCID-svwr-123p-skeq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:58:31.589551+00:00 Debian Oval Importer Affected by VCID-pkfu-tkaw-m7ba https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:14:58.899932+00:00 Debian Oval Importer Affected by VCID-rpve-2nqs-mucp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:18:21.108272+00:00 Debian Oval Importer Affected by VCID-hq66-w1de-eqe9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T13:20:07.690591+00:00 Debian Oval Importer Fixing VCID-vzdf-6u9d-bfax https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.3.0
2026-04-08T22:50:09.639757+00:00 Debian Oval Importer Affected by VCID-vzdf-6u9d-bfax https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:20:55.694503+00:00 Debian Oval Importer Affected by VCID-bjve-yt21-5uhe https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:06:01.327664+00:00 Debian Oval Importer Affected by VCID-svwr-123p-skeq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:48:06.198261+00:00 Debian Oval Importer Affected by VCID-pkfu-tkaw-m7ba https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:07:16.580479+00:00 Debian Oval Importer Affected by VCID-rpve-2nqs-mucp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:13:04.473063+00:00 Debian Oval Importer Affected by VCID-hq66-w1de-eqe9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T21:56:03.156967+00:00 Debian Oval Importer Fixing VCID-vzdf-6u9d-bfax https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.1.0