Vertica Security Bulletin – Libtar Vulnerabilities
Vertiguy
Administrator
Libtar vulnerability details can be found at each of the corresponding URLs.
CVE-2021-33643 - https://nvd.nist.gov/vuln/detail/CVE-2021-33643
CVE-2021-33644 - https://nvd.nist.gov/vuln/detail/CVE-2021-33644
CVE-2021-33645 - https://nvd.nist.gov/vuln/detail/CVE-2021-33645
CVE-2021-33646 - https://nvd.nist.gov/vuln/detail/CVE-2021-33646
RESOLUTION:
Vertica Server - Vertica Server is impacted. Libtar will be upgraded and incorporated into the next applicable Vertica release and backported to Version 11.1.1.
Vertica Accelerator Vertica Accelerator is not impacted by this vulnerability.
You may also review complete details at https://portal.microfocus.com/s/article/KM000013457?language=en_US&t=1674131904889
1