[Secure-testing-team] Bug#784213: libarchive: crash or infinite loop via malformed cpio archive
Salvatore Bonaccorso
carnil at debian.org
Mon May 4 05:23:12 UTC 2015
Source: libarchive
Version: 3.1.2-11
Severity: important
Tags: security upstream patch fixed-upstream
Hi,
See [0] for details. Upstrema bug [1] references as well the fixing
commit [2].
[0] http://seclists.org/fulldisclosure/2015/Apr/102
[1] https://github.com/libarchive/libarchive/issues/502
[2] https://github.com/libarchive/libarchive/commit/e6c9668f3202215ddb71617b41c19b6f05acf008
Regards,
Salvatore
More information about the Secure-testing-team
mailing list