Описание
Libarchive Remote Code Execution Vulnerability
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libarchive | fixed | 3.7.2-2.1 | package | |
| libarchive | not-affected | bullseye | package | |
| libarchive | not-affected | buster | package |
Примечания
https://github.com/advisories/GHSA-2jc9-36w4-pmqw
https://github.com/libarchive/libarchive/pull/2135
Introduced by: https://github.com/libarchive/libarchive/commit/01a2d329dfc71741892e2b590cf9fb25092474a0 (v3.6.0)
Fixed by: https://github.com/libarchive/libarchive/commit/eb7939b24a681a04648a59cdebd386b1e9dc9237 (v3.7.4)
https://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability
