diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2017-08-29 10:31:17 +0200 |
---|---|---|
committer | Adrian Dudau <adrian.dudau@enea.com> | 2017-08-29 13:35:44 +0200 |
commit | 099300f1d986bd5a631b12601881fa7d5f990d64 (patch) | |
tree | 5d81b2f92ee4078e9e1f971e043cf93e11be4795 /recipes-devtools | |
parent | 7da6ebdca2d6b30dd6240db73b0c7605c310a4f1 (diff) | |
download | meta-nfv-access-common-099300f1d986bd5a631b12601881fa7d5f990d64.tar.gz |
libarchive: fix for CVE-2017-5601
An error in the lha_read_file_header_1() in libarchive 3.2.2 allows
remote attackers to trigger an out-of-bounds read memory access and
subsequently cause a crash via a specially crafted archive.
References:
==========
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5601
https://secuniaresearch.flexerasoftware.com//secunia_research/2017-3
Upstream patch:
https://github.com/libarchive/libarchive/commit/98dcbbf0bf4854bf987557e55e55fff7abbf3ea9
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
Diffstat (limited to 'recipes-devtools')
0 files changed, 0 insertions, 0 deletions