[Bug 2093028] [NEW] tar in 24.04+24.10 crash on pax archives with options

Sun Jan 5 18:29:54 UTC 2025

Public bug reported:

Hi!  I can reproduce this on Ubuntu 24.04 and 24.10 but not Debian
stable/testing.  Tar version 1.35.

jas at kaka:~$ podman run -it --rm ubuntu:24.04
root at 3672b1c0c909:/# export TAR_OPTIONS="--pax-option='delete=atime,delete=ctime'"
root at 3672b1c0c909:/# mkdir foo
root at 3672b1c0c909:/# tar cf foo.tar foo
*** buffer overflow detected ***: terminated
Aborted (core dumped)
root at 3672b1c0c909:/# 

It seems somehow related to using quotes in the command line since this
works:

root at 3672b1c0c909:/# export TAR_OPTIONS="--pax-
option=delete=atime,delete=ctime"

Arguable this may be incorrect usage, but tar shouldn't crash.  Strange
thing is that Debian tar doesn't crash.

Thanks,
Simon

** Affects: tar (Ubuntu)
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to tar in Ubuntu.
https://bugs.launchpad.net/bugs/2093028

Title:
  tar in 24.04+24.10 crash on pax archives with options

Status in tar package in Ubuntu:
  New

Bug description:
  Hi!  I can reproduce this on Ubuntu 24.04 and 24.10 but not Debian
  stable/testing.  Tar version 1.35.

  jas at kaka:~$ podman run -it --rm ubuntu:24.04
  root at 3672b1c0c909:/# export TAR_OPTIONS="--pax-option='delete=atime,delete=ctime'"
  root at 3672b1c0c909:/# mkdir foo
  root at 3672b1c0c909:/# tar cf foo.tar foo
  *** buffer overflow detected ***: terminated
  Aborted (core dumped)
  root at 3672b1c0c909:/# 

  It seems somehow related to using quotes in the command line since
  this works:

  root at 3672b1c0c909:/# export TAR_OPTIONS="--pax-
  option=delete=atime,delete=ctime"

  Arguable this may be incorrect usage, but tar shouldn't crash.
  Strange thing is that Debian tar doesn't crash.

  Thanks,
  Simon

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/tar/+bug/2093028/+subscriptions