Publishing details

Published on 2017-10-26
Copied from debian sid in Primary Archive for Debian GNU/Linux by Ken VanDine

Changelog

libarchive (3.2.2-3.1) unstable; urgency=high

  * Non-maintainer upload.
  * Reupload 3.2.2-2.1 on top of 3.2.2-3
  * archive_strncat_l(): allocate and do not convert if length == 0
    (CVE-2016-10209) (Closes: #859456)
  * Reread the CAB header skipping the self-extracting binary code
    (CVE-2016-10349, CVE-2016-10350) (Closes: #861609)
  * Do something sensible for empty strings to make fuzzers happy
    (CVE-2017-14166)
    Fixes heap-based buffer over-read in the atol8 function. (Closes: #874539)

 -- Salvatore Bonaccorso <email address hidden>  Thu, 14 Sep 2017 16:02:10 +0200

Available diffs

diff from 3.2.2-2 to 3.2.2-3.1 (2.6 KiB)

Builds

amd64
i386

Built packages

bsdcpio transitional dummy package for moving bsdcpio to libarchive-tools

bsdtar transitional dummy package for moving bsdtar to libarchive-tools

libarchive-dev Multi-format archive and compression library (development files)

libarchive-tools FreeBSD implementations of 'tar' and 'cpio' and other archive tools

libarchive13 Multi-format archive and compression library (shared library)

Package files

bsdcpio_3.2.2-3.1_all.deb (11.6 KiB)
bsdtar_3.2.2-3.1_all.deb (11.6 KiB)
libarchive-dev_3.2.2-3.1_amd64.deb (466.7 KiB)
libarchive-dev_3.2.2-3.1_i386.deb (514.7 KiB)
libarchive-tools_3.2.2-3.1_amd64.deb (71.1 KiB)
libarchive-tools_3.2.2-3.1_i386.deb (75.5 KiB)
libarchive13_3.2.2-3.1_amd64.deb (285.1 KiB)
libarchive13_3.2.2-3.1_i386.deb (325.9 KiB)
libarchive_3.2.2-3.1.debian.tar.xz (16.5 KiB)
libarchive_3.2.2-3.1.dsc (2.5 KiB)
libarchive_3.2.2.orig.tar.gz (5.2 MiB)