FreeBSD gtar symlink confusion vulnerability (CVE-2006-6097) advisory and fix

Vulnerability Key Information Vulnerability Overview Category: Contrib Module Module: contrib_tar Subject: gtar Symbolic Link Name Confusion Vulnerability (CVE-2006-6097) Affected Versions: FreeBSD 4.x and 5.x releases Release Date: 2006-12-06 Fix Dates: - RELENG_5, 5.5-STABLE: 2006-12-06 09:16:17 UTC - RELENG_5_5, 5.5-RELEASE-p9: 2006-12-06 09:16:41 UTC - RELENG_4, 4.11-STABLE: 2006-12-06 09:17:09 UTC - RELENG_4_11, 4.11-RELEASE-p26: 2006-12-06 09:18:02 UTC Issue Description Root Cause: Symbolic links created using the "GNUMTYPE_NAMES" extension may become absolute links due to lack of proper validity checking. Impact Potential Risk: An attacker can craft a malicious tar archive that, when extracted by a user running gtar, allows the attacker to overwrite any file with the privileges of the user running gtar. If filesystem permissions permit, this could include critical system files (e.g., when gtar runs as root) or important user configuration files (e.g., .tcshrc or .bashrc), enabling the attacker to execute arbitrary commands. Solution Direct Upgrade: Upgrade vulnerable systems to 4-STABLE or 5-STABLE, or to the RELENG_5_5 or RELENG_4_11 security branches. Apply Patch: Download and apply the relevant patch. Additional Details Reference Links: External links providing more detailed information. ``` The above is a concise summary of the vulnerability, covering key aspects such as environment, impact, and remediation.

Goal Reached Thanks to every supporter — we hit 100%!

FreeBSD gtar symlink confusion vulnerability (CVE-2006-6097) advisory and fix