Use-After-Free Vulnerability in libtar Affects OpenEuler
CVE-2021-33640

6.2MEDIUM

Key Information:

Vendor

Openeuler

Status
Openeuler 22.03 Lts
Openeuler 20.03 Lts Sp1
Openeuler 20.03 Lts Sp3
Vendor
CVE Published:
19 December 2022

What is CVE-2021-33640?

The vulnerability in libtar arises from improper memory management after the function tar_close() is invoked. Following the memory release for pointer t, subsequent operations within the list() function continue to reference this pointer. Specifically, it leads to a use-after-free condition when attempting to access released memory with free_longlink_longname(t->th_buf), potentially leading to memory corruption and arbitrary code execution.

Affected Version(s)

openEuler 20.03 LTS SP1 libtar 1.2.20-19

openEuler 20.03 LTS SP3 libtar 1.2.20-19

openEuler 22.03 LTS libtar 1.2.20-21

References

https://www.openeuler.org/en/security/cve/detail/?cveId=C...
https://lists.fedoraproject.org/archives/list/package-ann...
vendor-advisory
https://lists.fedoraproject.org/archives/list/package-ann...
vendor-advisory

CVSS V3.1

Score:
6.2
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.