Vulnerability CVE-2018-20482

Vulnerability CVE-2018-20482

Published: 2018-12-26

Description:

Type:

(Loop with Unreachable Exit Condition ('Infinite Loop'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
1.9/10	2.9/10	3.4/10

http://git.savannah.gnu.org/cgit/tar.git/commit/?id=c15c42ccd1e2377945fd0414eca1a49294bff454

http://lists.gnu.org/archive/html/bug-tar/2018-12/msg00023.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00077.html

http://www.securityfocus.com/bid/106354

https://lists.debian.org/debian-lts-announce/2018/12/msg00023.html

https://news.ycombinator.com/item?id=18745431

https://security.gentoo.org/glsa/201903-05

https://twitter.com/thatcks/status/1076166645708668928

https://utcc.utoronto.ca/~cks/space/blog/sysadmin/TarFindingTruncateBug