Fix GNUTYPE_NAMES directory traversal vulnerability by not extracting

these entries. Support for GNUTYPE_NAMES will be dropped completely in 1.16.1. Notified by sem@ Security: VuXML 3dd7eb58-80ae-11db-b4ec-000854d03344
author: Christian Weisgerber <naddy@FreeBSD.org> 2006-11-30 20:31:51 +0000
committer: Christian Weisgerber <naddy@FreeBSD.org> 2006-11-30 20:31:51 +0000
commit: 521d9e0eade8efa74ebd75771a0a7cdac24c64d6 (patch)
tree: 0f0eabcb35959b3e869dc09b22f8897b3927ef58 /archivers/gtar/files
parent: - Respect X11BASE (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/archivers/gtar/files/patch-src_extract.c b/archivers/gtar/files/patch-src_extract.c
new file mode 100644
index 000000000000..07e8db665bfa
--- /dev/null
+++ b/archivers/gtar/files/patch-src_extract.c
@@ -0,0 +1,16 @@
+
+$FreeBSD$
+
+--- src/extract.c.orig
++++ src/extract.c
+@@ -1121,10 +1121,6 @@
+       *fun = extract_volhdr;
+       break;
+ 
+-    case GNUTYPE_NAMES:
+-      *fun = extract_mangle_wrapper;
+-      break;
+-
+     case GNUTYPE_MULTIVOL:
+       ERROR ((0, 0,
+ 	      _("%s: Cannot extract -- file is continued from another volume"),
author	Christian Weisgerber <naddy@FreeBSD.org>	2006-11-30 20:31:51 +0000
committer	Christian Weisgerber <naddy@FreeBSD.org>	2006-11-30 20:31:51 +0000
commit	521d9e0eade8efa74ebd75771a0a7cdac24c64d6 (patch)
tree	0f0eabcb35959b3e869dc09b22f8897b3927ef58 /archivers/gtar/files
parent	- Respect X11BASE (diff)