Photon OS 1.0: Binutils / Libarchive / Ntp PHSA-2017-0010 (deprecated)

An update of binutils,ntp,libarchive packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0010. The text itself is copyright C VMwar...

CVE-2016-4809

The archivereadformatcpioreadheader function in archivereadsupportformatcpio.c in libarchive before 3.2.1 allows remote attackers to cause a denial of service application crash via a CPIO archive with a large symlink...

CVE-2016-4809

The archivereadformatcpioreadheader function in archivereadsupportformatcpio.c in libarchive before 3.2.1 allows remote attackers to cause a denial of service application crash via a CPIO archive with a large symlink...

CVE-2016-4809

The CVE-2016-4809 vulnerability affects libarchive (archive_read_format_cpio_read_header in archive_read_support_format_cpio.c) and allows a remote attacker to cause an application crash (DoS) by processing a CPIO archive containing a large symlink. Affected upstream is libarchive

CentOS Update for libarchive CESA-2016:1850 centos6

Check the version of libarchive SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882557";...

openSUSE Security Update : libarchive (openSUSE-2016-969)

libarchive was updated to fix 20 security issues. These security issues were fixed : - CVE-2015-8918: Overlapping memcpy in CAB parser bsc985698. - CVE-2015-8919: Heap out of bounds read in LHA/LZH parser bsc985697. - CVE-2015-8920: Stack out of bounds read in ar parser bsc985675. - CVE-2015-8921...

Security update for libarchive (important)

libarchive was updated to fix 20 security issues. These security issues were fixed: - CVE-2015-8918: Overlapping memcpy in CAB parser bsc985698. - CVE-2015-8919: Heap out of bounds read in LHA/LZH parser bsc985697. - CVE-2015-8920: Stack out of bounds read in ar parser bsc985675. - CVE-2015-8921:...

[SECURITY] [DLA 554-1] libarchive security update

Package : libarchive Version : 3.0.4-3+wheezy2 CVE ID : CVE-2015-8917 CVE-2015-8919 CVE-2015-8920 CVE-2015-8921 CVE-2015-8922 CVE-2015-8923 CVE-2015-8924 CVE-2015-8925 CVE-2015-8926 CVE-2015-8930 CVE-2015-8931 CVE-2015-8932 CVE-2015-8933 CVE-2015-8934 CVE-2016-4300 CVE-2016-4302 CVE-2016-4809...

Ubuntu 14.04 LTS / 16.04 LTS : libarchive vulnerabilities (USN-3033-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3033-1 advisory. Hanno Bck discovered that libarchive contained multiple security issues when processing certain malformed archive files. A remote attacker...

Ubuntu: Security Advisory (USN-3033-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-3033-1: libarchive vulnerabilities

Hanno Böck discovered that libarchive contained multiple security issues when processing certain malformed archive files. A remote attacker could use this issue to cause libarchive to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2015-8916, CVE-2015-8917...

openSUSE Security Update : libarchive (openSUSE-2016-770)

libarchive was updated to fix one security issue. This security issue was fixed : - CVE-2016-4809: Memory allocation error with gigantic symbolic links in cpio archives bsc984990. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

CVE-2016-4809

The archivereadformatcpioreadheader function in archivereadsupportformatcpio.c in libarchive before 3.2.1 allows remote attackers to cause a denial of service application crash via a CPIO archive with a large symlink...