libarchive-3.1.2-14.el7
エラータID: AXSA:2020-4444:01
The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file managers.
Security Fix(es):
* libarchive: use-after-free in archive_read_format_rar_read_data when there is an error in the decompression of an archive entry (CVE-2019-18408)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2019-18408
archive_read_format_rar_read_data in archive_read_support_format_rar.c in libarchive before 3.4.0 has a use-after-free in a certain ARCHIVE_FAILED situation, related to Ppmd7_DecodeSymbol.
Update packages.
archive_read_format_rar_read_data in archive_read_support_format_rar.c in libarchive before 3.4.0 has a use-after-free in a certain ARCHIVE_FAILED situation, related to Ppmd7_DecodeSymbol.
N/A
SRPMS
- libarchive-3.1.2-14.el7.src.rpm
MD5: 4aa2e22292263879e08c74cc9f44d6c9
SHA-256: c4ff53c0de64d62e851430b915dcc7f1aa8f36cc20c1a2e3525eb09b7884019c
Size: 4.35 MB
Asianux Server 7 for x86_64
- libarchive-3.1.2-14.el7.x86_64.rpm
MD5: 5e0c2cd93ada12c4ac4c0032141d1d6e
SHA-256: eb9068f703763a804117da81029b673dc69854a8fdd4780d42a1976e20e3f6bd
Size: 318.29 kB - libarchive-devel-3.1.2-14.el7.x86_64.rpm
MD5: 2640a1aa76d5d5fa45ffa002cbbf59a8
SHA-256: d8293b330f1963d0f0b6b1a521dd96b48ab5088906e6e6e7f438305e6367a14d
Size: 113.90 kB - libarchive-3.1.2-14.el7.i686.rpm
MD5: 46dc4d73f900e7276491e167f9d58317
SHA-256: e4ec8c62641ad4a0e36572375020cadfeba489d2c2bada677a8cd18a856a8bcc
Size: 335.06 kB
日本語