ELSA-2016-1850

Опубликовано: 12 сент. 2016

Источник: oracle-oval

Платформа: Oracle Linux 6

Описание

ELSA-2016-1850: libarchive security update (IMPORTANT)

[2.8.3-7]

Fixes variation of CVE-2016-5418: Hard links could include '..' in their path.

[2.8.3-6]

Fixes CVE-2016-5418: Archive Entry with type 1 (hardlink) causes file overwrite (#1365774)

[2.8.3-5]

enable testsuite
CVE batch in summer 2016

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

libarchive

2.8.3-7.el6_8

libarchive-devel

2.8.3-7.el6_8

Oracle Linux i686

libarchive

2.8.3-7.el6_8

libarchive-devel

2.8.3-7.el6_8

Oracle Linux sparc64

libarchive

2.8.3-7.el6_8

libarchive-devel

2.8.3-7.el6_8

Связанные CVE

Ссылки на источники

Связанные уязвимости

ELSA-2016-1844

oracle-oval

почти 9 лет назад

ELSA-2016-1844: libarchive security update (IMPORTANT)

CVE-2016-5844

CVSS3: 6.5

ubuntu

почти 9 лет назад

Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a crafted ISO file.

CVE-2016-5844

CVSS3: 3.7

redhat

около 9 лет назад

Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a crafted ISO file.

CVE-2016-5844

CVSS3: 6.5

nvd

почти 9 лет назад

Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a crafted ISO file.

CVE-2016-5844

CVSS3: 6.5

debian

почти 9 лет назад

Integer overflow in the ISO parser in libarchive before 3.2.1 allows r ...