Security Advisory

CVE-2021-33643

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-09 00:00:00

Last updated 2025-11-03 20:33:35

Assigner openEuler

State PUBLISHED

Description

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.

← Browse all CVEs View on cve.org ↗