libarchive 3.1.2-9ubuntu0.1 source package in Ubuntu
Changelog
libarchive (3.1.2-9ubuntu0.1) utopic-security; urgency=medium
* SECURITY UPDATE: absolute path traversal vulnerability in bsdcpio
- debian/patches/CVE-2015-2304.patch: don't allow absolute paths by
default in cpio/cpio.c, libarchive/archive.h,
libarchive/archive_write_disk_posix.c, added test to
libarchive/test/test_write_disk_secure.c, updated documentation in
cpio/bsdcpio.1, libarchive/archive_write_disk.3.
- CVE-2015-2304
-- Marc Deslauriers <email address hidden> Tue, 24 Mar 2015 12:39:18 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Utopic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| libarchive_3.1.2.orig.tar.gz | 4.3 MiB | eb87eacd8fe49e8d90c8fdc189813023ccc319c5e752b01fb6ad0cc7b2c53d5e |
| libarchive_3.1.2-9ubuntu0.1.debian.tar.xz | 13.7 KiB | 17d5c8ac6e501005ff497e78d2fbd11de6225592062c012d3256f1587de3204a |
| libarchive_3.1.2-9ubuntu0.1.dsc | 2.3 KiB | bb037bf4c70cebc4d1e4a8c28e162d90ee39434a89561f14b284c3ec4229887e |
Available diffs
Binary packages built by this source
- bsdcpio: No summary available for bsdcpio in ubuntu utopic.
No description available for bsdcpio in ubuntu utopic.
- bsdtar: No summary available for bsdtar in ubuntu utopic.
No description available for bsdtar in ubuntu utopic.
- libarchive-dev: No summary available for libarchive-dev in ubuntu utopic.
No description available for libarchive-dev in ubuntu utopic.
- libarchive13: No summary available for libarchive13 in ubuntu utopic.
No description available for libarchive13 in ubuntu utopic.
