Lucene search
Gentoo FoundationMGASA-2020-0127HistoryMar 06, 2020 - 7:13 p.m.
Updated libarchive packages fix security vulnerabilities
2020-03-0619:13:58
Gentoo Foundation
advisories.mageia.org
14
0.005 Low
EPSS
Percentile
76.6%
The updated packages fix several issues including security vulnerabilities: In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive. (CVE-2019-19221) archive_read_support_format_rar5.c in libarchive before 3.4.2 attempts to unpack a RAR5 file with an invalid or corrupted header (such as a header size of zero), leading to a SIGSEGV or possibly unspecified other impact. (CVE-2020-9308)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 7 | noarch | libarchive | <Â 3.4.0-1.1 | libarchive-3.4.0-1.1.mga7 |
Related
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : libarchive vulnerabilities (USN-4293-1)
2020-03-06 00:00:00
SUSE SLED12 / SLES12 Security Update : libarchive (SUSE-SU-2021:3722-1)
2021-11-18 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4293-1)
2020-03-03 00:00:00
Mageia: Security Advisory (MGASA-2020-0127)
2022-01-28 00:00:00
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2020-1779)
2020-07-03 00:00:00
cloudfoundry
cloudfoundry
USN-4293-1: libarchive vulnerabilities | Cloud Foundry
2020-03-10 00:00:00
ubuntu
ubuntu
libarchive vulnerabilities
2020-03-02 00:00:00
debiancve
debiancve
CVE-2020-9308
2020-02-20 07:15:00
CVE-2019-19221
2019-11-21 23:15:00
redhatcve
redhatcve
CVE-2020-9308
2020-02-21 19:40:45
CVE-2019-19221
2020-02-11 12:44:25
cvelist
cvelist
CVE-2020-9308
2020-02-20 06:07:23
CVE-2019-19221
2019-11-21 00:00:00
cve
cve
CVE-2020-9308
2020-02-20 07:15:00
CVE-2019-19221
2019-11-21 23:15:00
veracode
veracode
Arbitrary Code Execution
2020-08-06 21:33:29
Denial Of Service (DoS)
2019-11-25 01:39:19
alpinelinux
alpinelinux
CVE-2020-9308
2020-02-20 07:15:00
prion
prion
Remote file inclusion
2020-02-20 07:15:00
Design/Logic Flaw
2019-11-21 23:15:00
ubuntucve
ubuntucve
CVE-2020-9308
2020-02-20 00:00:00
CVE-2019-19221
2019-11-21 00:00:00
osv
osv
CVE-2020-9308
2020-02-20 07:15:12
CVE-2019-19221
2019-11-21 23:15:13
Moderate: libarchive security update
2020-11-03 12:05:06
fedora
fedora
[SECURITY] Fedora 32 Update: libarchive-3.4.2-1.fc32
2020-03-20 00:14:47
[SECURITY] Fedora 31 Update: libarchive-3.4.3-1.fc31
2020-06-07 19:47:20
[SECURITY] Fedora 32 Update: libarchive-3.4.3-1.fc32
2020-05-26 03:15:28
almalinux
almalinux
Moderate: libarchive security update
2020-11-03 12:05:06
redhat
redhat
(RHSA-2020:4443) Moderate: libarchive security update
2020-11-03 12:05:06
(RHSA-2021:0146) Moderate: Release of OpenShift Serverless 1.12.0
2021-01-14 13:24:22
(RHSA-2020:5149) Moderate: Release of OpenShift Serverless 1.11.0
2020-11-18 13:59:56
oraclelinux
oraclelinux
libarchive security update
2020-11-10 00:00:00
gentoo
gentoo
libarchive: Multiple vulnerabilities
2020-03-15 00:00:00
debian
debian
[SECURITY] [DLA 3202-1] libarchive security update
2022-11-22 17:33:12
[SECURITY] [DLA 2987-1] libarchive security update
2022-04-30 22:30:22
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0272
2020-02-06 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0207
2020-02-13 00:00:00
Critical Photon OS Security Update - PHSA-2020-0207
2020-02-13 00:00:00
