Critical Photon OS Security Update - PHSA-2026-4.0-1007

Updates of 'curl', 'libarchive' packages of Photon OS have been released...

MGASA-2025-0200 Updated libarchive packages fix security vulnerabilities

Double free at archivereadformatrarseekdata in archivereadsupportformatrar.c. CVE-2025-5914 Heap buffer over read in copyfromlzsswindow at archivereadsupportformatrar.c. CVE-2025-5915 Integer overflow while reading warc files at archivereadsupportformatwarc.c. CVE-2025-5916 Off by one error in...

Updated libarchive packages fix security vulnerabilities

Double free at archivereadformatrarseekdata in archivereadsupportformatrar.c. CVE-2025-5914 Heap buffer over read in copyfromlzsswindow at archivereadsupportformatrar.c. CVE-2025-5915 Integer overflow while reading warc files at archivereadsupportformatwarc.c. CVE-2025-5916 Off by one error in...

[slackware-security] libarchive

New libarchive packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.7.8-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: tar reader: Handle truncation in the...

Important Photon OS Security Update - PHSA-2025-4.0-0768

Updates of 'libarchive' packages of Photon OS have been released...

MGASA-2024-0154 Updated libarchive packages fix security vulnerability

Remote Code Execution Vulnerability. CVE-2024-26256...

CVE-2022-36227 vulnerabilities

Vulnerabilities for packages: libarchive...

MGASA-2021-0430 Updated libarchive packages fix security vulnerability

Fix handling of symbolic link ACLs on Linux. Never follow symlinks when setting file flags on Linux. Do not follow symlinks when processing the fixup list...

Updated libarchive packages fix security vulnerability

Fix handling of symbolic link ACLs on Linux. Never follow symlinks when setting file flags on Linux. Do not follow symlinks when processing the fixup list...

MGASA-2016-0378 Updated libarchive packages fix security vulnerability

The updated packages might contain additional security fixes if we missed some other ones when we cherry-picked patches against version 3.2.1...

Updated libarchive packages fix security vulnerability

The updated packages fix several security vulnerabilities: A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with flaws in libarchive's file system sandboxing, this issue could cause an application using libarchive to overwrite arbitrary files with...

MGASA-2015-0208 Updated libarchive packages fix a security vulnerability

Updated libarchive packages fix security vulnerability: An out-of-bounds read flaw was found in the way libarchive processed certain archives. An attacker could create a specially crafted archive that, when processed by an application using the libarchive library, would cause that application to...

MGASA-2015-0106 Updated libarchive packages fix security vulnerability

Updated libarchive packages fix security vulnerability: Alexander Cherepanov discovered that bsdcpio, an implementation of the "cpio" program part of the libarchive project, is susceptible to a directory traversal vulnerability via absolute paths...