[Bug 2145764] Re: CVE-2026-33056: Vendored tar crate can chmod arbitrary directories by following symlinks

Max Gilmour Wed, 01 Apr 2026 11:05:53 -0700

rustc-1.89 Noble: https://launchpad.net/~maxgmr/+archive/ubuntu/rustc-
lp2145764/+sourcepub/18273713/+listing-archive-extra


rustc-1.89 Jammy: https://launchpad.net/~maxgmr/+archive/ubuntu/rustc-
lp2145764/+sourcepub/18273703/+listing-archive-extra

rustc-1.88 Questing: https://launchpad.net/~rust-
toolchain/+archive/ubuntu/staging/+sourcepub/18271229/+listing-archive-
extra

rustc-1.85 Questing:
https://launchpad.net/~maxgmr/+archive/ubuntu/rustc-
lp2145764/+sourcepub/18273561/+listing-archive-extra

rustc-1.85 Noble: https://launchpad.net/~maxgmr/+archive/ubuntu/rustc-
lp2145764/+sourcepub/18273971/+listing-archive-extra

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2145764

Title:
  CVE-2026-33056: Vendored tar crate can chmod arbitrary directories by
  following symlinks

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/asusctl/+bug/2145764/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 2145764] Re: CVE-2026-33056: Vendored tar crate can chmod arbitrary directories by following symlinks

Reply via email to