Описание
ELSA-2020-0203: libarchive security update (IMPORTANT)
[3.1.2-14]
- Fix patch application error
[3.1.2-13]
- Fix CVE-2019-18408: RAR use-after-free
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
bsdcpio
3.1.2-14.el7_7
bsdtar
3.1.2-14.el7_7
libarchive
3.1.2-14.el7_7
libarchive-devel
3.1.2-14.el7_7
Oracle Linux x86_64
bsdcpio
3.1.2-14.el7_7
bsdtar
3.1.2-14.el7_7
libarchive
3.1.2-14.el7_7
libarchive-devel
3.1.2-14.el7_7
Связанные CVE
Связанные уязвимости
archive_read_format_rar_read_data in archive_read_support_format_rar.c in libarchive before 3.4.0 has a use-after-free in a certain ARCHIVE_FAILED situation, related to Ppmd7_DecodeSymbol.
archive_read_format_rar_read_data in archive_read_support_format_rar.c in libarchive before 3.4.0 has a use-after-free in a certain ARCHIVE_FAILED situation, related to Ppmd7_DecodeSymbol.
archive_read_format_rar_read_data in archive_read_support_format_rar.c in libarchive before 3.4.0 has a use-after-free in a certain ARCHIVE_FAILED situation, related to Ppmd7_DecodeSymbol.
archive_read_format_rar_read_data in archive_read_support_format_rar.c ...
archive_read_format_rar_read_data in archive_read_support_format_rar.c in libarchive before 3.4.0 has a use-after-free in a certain ARCHIVE_FAILED situation, related to Ppmd7_DecodeSymbol.