Advisories » MGASA-2015-0208

Updated libarchive packages fix a security vulnerability

Publication date: 11 May 2015
Modification date: 11 May 2015
Type: security
Affected Mageia releases : 4

Description

Updated libarchive packages fix security vulnerability:

An out-of-bounds read flaw was found in the way libarchive processed certain
archives. An attacker could create a specially crafted archive that, when
processed by an application using the libarchive library, would cause that
application to crash (rhbz#1216891).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=15854
• https://bugzilla.redhat.com/show_bug.cgi?id=1216891

SRPMS

4/core

• libarchive-3.1.2-2.2.mga4