Advisories » MGASA-2021-0430

Updated libarchive packages fix security vulnerability

Publication date: 23 Sep 2021
Modification date: 23 Sep 2021
Type: security
Affected Mageia releases : 8

Description

Fix handling of symbolic link ACLs on Linux.

Never follow symlinks when setting file flags on Linux.

Do not follow symlinks when processing the fixup list.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=29431
• https://github.com/libarchive/libarchive/releases/tag/v3.5.2

SRPMS

8/core

• libarchive-3.5.2-1.mga8