MGASA-2018-0361

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2018-0361.html

Import Source

https://advisories.mageia.org/MGASA-2018-0361.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2018-0361

Related

Published

2018-08-31T21:11:59Z

Modified

2018-08-31T20:30:15Z

Summary

Updated libarchive packages fix security vulnerabilities

Details

The updated packages fix security vulnerabilities:

An out-of-bounds read flaw exists in parsefileinfo in archivereadsupportformatiso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archivereadformatiso9660read_header (CVE-2017-14501).

libarchive 3.3.2 suffers from an out-of-bounds read within lhareaddatanone() in archivereadsupportformatlha.c when extracting a specially crafted lha archive, related to lhacrc16 (CVE-2017-14503).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

MGASA-2018-0361

Affected packages