NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
96143601de
kumquat-buildroot/package/libarchive
History
Baruch Siach 760fbe789c libarchive: add upstream security patches 
Add patches for the following security issues:

CVE-2017-14501 - An out-of-bounds read flaw exists in parse_file_info in
archive_read_support_format_iso9660.c when extracting a specially
crafted iso9660 iso file.

CVE-2017-14502 - Off-by-one error for UTF-16 names in RAR archives,
leading to an out-of-bounds read in archive_read_format_rar_read_header.

CVE-2017-14503 - Out-of-bounds read within lha_read_data_none() in
archive_read_support_format_lha.c when extracting a specially crafted
lha archive.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2018-08-08 16:19:28 +02:00
..
0001-Do-something-sensible-for-empty-strings-to-make-fuzz.patch
0002-iso9660-validate-directory-record-length.patch
0003-Avoid-a-read-off-by-one-error-for-UTF16-names-in-RAR.patch
0004-Reject-LHA-archive-entries-with-negative-size.patch
Config.in
libarchive.hash
libarchive.mk