These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
Archive::Tar versions before 3.10 for Perl contain a memory exhaustion vulnerability. The _read_tar() function reads each entry's payload using $handle->read($$data, $block), where $block is derived from the entry's 12-byte size field in the tar header without an upper bound. A crafted tar header declaring a multi-gigabyte size causes Perl to allocate a scalar of that size, leading to memory exhaustion. T [truncated]
Archive::Tar versions before 3.08 for Perl are vulnerable to a path traversal via hardlink extraction. The _make_special_file() function passes the tar header's linkname directly to link() without validating against absolute paths or directory traversal sequences (..). This allows creation of a hardlink to an attacker-controlled path outside the extraction directory, sharing the inode of a victim file. Su [truncated]
Archive::Tar before 3.08 for Perl extracts symbolic links with attacker-controlled targets outside the extraction directory. The _make_special_file() function passes the tar header's linkname directly to symlink() without validating against absolute paths or directory traversal sequences. The secure-extract mode that guards regular file extraction does not apply to symlink targets. A subsequent open opera [truncated]