Package: tar Version: 1.26-4 Severity: important tar has a null pointer dereference bug with option (-T) if a file starts with a null byte character.
echo -en "\x00AAAA" > foo tar -T foo The above commands will segfault tar. -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages tar depends on: ii libc6 2.13-35 tar recommends no packages. Versions of packages tar suggests: ii bzip2 1.0.6-4 pn ncompress <none> ii xz-utils 5.1.1alpha+20120614-1 -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
