On 2024-12-21 10:22, exploit dev wrote:
I have noticed while auditing tar decode_options() function, that new_argc is prone to integer overflow.
Fixed here: https://git.savannah.gnu.org/cgit/tar.git/commit/?id=5a7185ae314ca104c095d5a4e515189cde784e77
