> Joerg thinks that this is an nfs issue (a bug with nfs giving incorrect data).
even if true, tar shouldn't *core dump*. is there a path to RCE here some where? it's clearly overwriting pointers with strings, so unless someone can clearly show there is no code exec vector here, it seems potentially problematic and should be fixed. .mrg.
