Описание
Security update for libarchive
This update for libarchive fixes the following issue:
- Fix a heap-based buffer overflow (CVE-2016-1541, bsc#979005)
Список пакетов
SUSE Linux Enterprise Desktop 12
libarchive13-3.1.2-12.1
SUSE Linux Enterprise Desktop 12 SP1
libarchive13-3.1.2-12.1
SUSE Linux Enterprise Server 12
libarchive13-3.1.2-12.1
SUSE Linux Enterprise Server 12 SP1
libarchive13-3.1.2-12.1
SUSE Linux Enterprise Server for SAP Applications 12
libarchive13-3.1.2-12.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
libarchive13-3.1.2-12.1
SUSE Linux Enterprise Software Development Kit 12
libarchive-devel-3.1.2-12.1
SUSE Linux Enterprise Software Development Kit 12 SP1
libarchive-devel-3.1.2-12.1
Ссылки
- Link for SUSE-SU-2016:1588-1
- E-Mail link for SUSE-SU-2016:1588-1
- SUSE Security Ratings
- SUSE Bug 979005
- SUSE CVE CVE-2016-1541 page
Описание
Heap-based buffer overflow in the zip_read_mac_metadata function in archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote attackers to execute arbitrary code via crafted entry-size values in a ZIP archive.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP1:libarchive13-3.1.2-12.1
SUSE Linux Enterprise Desktop 12:libarchive13-3.1.2-12.1
SUSE Linux Enterprise Server 12 SP1:libarchive13-3.1.2-12.1
SUSE Linux Enterprise Server 12:libarchive13-3.1.2-12.1
Ссылки
- CVE-2016-1541
- SUSE Bug 979005