<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/poky.git/meta/recipes-extended/libarchive/libarchive_3.3.3.bb, branch master</title>
<subtitle>Mirror of git.yoctoproject.org/poky</subtitle>
<id>https://git.enea.com/cgit/linux/poky.git/atom?h=master</id>
<link rel='self' href='https://git.enea.com/cgit/linux/poky.git/atom?h=master'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/'/>
<updated>2019-08-28T10:31:21+00:00</updated>
<entry>
<title>libarchive:upgrade 3.3.3 -&gt; 3.4.0</title>
<updated>2019-08-28T10:31:21+00:00</updated>
<author>
<name>Zang Ruochen</name>
<email>zangrc.fnst@cn.fujitsu.com</email>
</author>
<published>2019-08-27T02:45:16+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=662c64166fcba75bc6ed9ae59f492788982ff6f8'/>
<id>urn:sha1:662c64166fcba75bc6ed9ae59f492788982ff6f8</id>
<content type='text'>
-libarchive/CVE-2018-1000877.patch
-libarchive/CVE-2018-1000878.patch
-libarchive/CVE-2018-1000879.patch
-libarchive/CVE-2018-1000880.patch
-libarchive/CVE-2019-1000019.patch
-libarchive/CVE-2019-1000020.patch
-libarchive/bug1066.patch
-libarchive/non-recursive-extract-and-list.patch
 Removed since these are included in 3.4.0.

-License-Update: Copyright year updated to 2018.

(From OE-Core rev: 4f8fa80b6c57f29c68678cabcac5d114d1ff0500)

Signed-off-by: Zang Ruochen &lt;zangrc.fnst@cn.fujitsu.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libarchive: integrate security fixes</title>
<updated>2019-03-06T10:39:25+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross.burton@intel.com</email>
</author>
<published>2019-03-05T16:30:02+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=4aafd981b85c3c03937d57a6afaa20546d987a19'/>
<id>urn:sha1:4aafd981b85c3c03937d57a6afaa20546d987a19</id>
<content type='text'>
Fix the following CVEs by backporting patches from upstream:
- CVE-2019-1000019
- CVE-2019-1000020
- CVE-2018-1000877
- CVE-2018-1000878
- CVE-2018-1000879
- CVE-2018-1000880

(From OE-Core rev: ea251020304b9c18f31c39de867a47311b1bb46c)

Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libarchive: fix bug1066</title>
<updated>2018-10-11T22:06:35+00:00</updated>
<author>
<name>Andrej Valek</name>
<email>andrej.valek@siemens.com</email>
</author>
<published>2018-10-10T13:40:14+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=31dbe40c9f9c5fe3073fab2a780f7a248995cc82'/>
<id>urn:sha1:31dbe40c9f9c5fe3073fab2a780f7a248995cc82</id>
<content type='text'>
Fix out of bounds read on empty string filename for guntar, pax and v7tar

(From OE-Core rev: 459506272b8800604886f6bd3bc32ee09d7bb906)

Signed-off-by: Andrej Valek &lt;andrej.valek@siemens.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>libarchive: Update 3.3.2 -&gt; 3.3.3</title>
<updated>2018-09-22T01:45:46+00:00</updated>
<author>
<name>Otavio Salvador</name>
<email>otavio@ossystems.com.br</email>
</author>
<published>2018-09-16T21:16:23+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=4622cc08bfd1f195c17b153cc5ff40e939850434'/>
<id>urn:sha1:4622cc08bfd1f195c17b153cc5ff40e939850434</id>
<content type='text'>
This upgrades to 3.3.3 release and drop the backported patches when
doing the recipe update.

(From OE-Core rev: 60d99a4e64fdddbbe5863fa5879c813fa004600b)

Signed-off-by: Otavio Salvador &lt;otavio@ossystems.com.br&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
</feed>
