Unrated severityNVD Advisory· Published Dec 19, 2022· Updated Apr 17, 2025
CVE-2021-33640
CVE-2021-33640
Description
After tar_close(), libtar.c releases the memory pointed to by pointer t. After tar_close() is called in the list() function, it continues to use pointer t: free_longlink_longname(t->th_buf) . As a result, the released memory is used (use-after-free).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- openEuler/openEuler 20.03 LTS SP1v5Range: libtar 1.2.20-19
- openEuler/openEuler 20.03 LTS SP3v5Range: libtar 1.2.20-19
- openEuler/openEuler 22.03 LTSv5Range: libtar 1.2.20-21
Patches
Vulnerability mechanics
References
3- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4S4PJRCJLEAWN2EKXGLSOBTL7O57V7NC/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WX5YE66CT7Y5C2HTHXSFDKQWYWYWJ2T/mitrevendor-advisory
- www.openeuler.org/en/security/cve/detail/mitre
News mentions
0No linked articles in our index yet.