[3.5] libgsf: Null pointer dereference in tar_directory_for_file() (CVE-2016-9888)
An error within the “tar_directory_for_file()” function
(gsf-infile-tar.c) in GNOME Structured File Library
before 1.14.41 can be exploited to trigger a Null pointer dereference
and subsequently cause a crash via a crafted TAR file.
Fixed In Version:
libgsf 1.14.41
Reference:
https://secunia.com/secunia\_research/2016-17/
Patch:
https://github.com/GNOME/libgsf/commit/95a8351a75758cf10b3bf6abae0b6b461f90d9e5
(from redmine: issue id 6554, created on 2016-12-19, closed on 2016-12-20)
- Relations:
- parent #6553 (closed)
- Changesets:
- Revision cf24cc64 on 2016-12-20T09:13:30Z:
main/libgsf: security upgrade to 1.14.41 (CVE-2016-9888). Fixes #6554