Vulnerability in the popular Rust library Async-tar could allow attackers to smuggle archive entries and execute arbitrary code remotely.
Researchers at Edera say they have uncovered a critical boundary-parsing bug, dubbed TARmageddon ( CVE-2025-62518 ), in the popular async-tar Rust library. And not only is it in this library, but also ...
A high-severity vulnerability in the now-abandoned async-tar Rust library and its forks can be exploited to gain remote code ...
High-severity TARmageddon flaw (CVE-2025-62518) in Rust’s async-tar libraries enables RCE via header parsing bug.