10 matches found
PT-2020-8614
This update for xar fixes the following issues: Changes in xar: - Switch to the maintained Apple xar lineage build 503, versioned 1.8.0.0.503: the mackyle 1.6.1 fork this package tracked has been dead since 2012, and Debian, Fedora and Gentoo all moved to Apple's xar apple-oss-distributions/xar...
PT-2020-8615
This update for xar fixes the following issues: Changes in xar: - Switch to the maintained Apple xar lineage build 503, versioned 1.8.0.0.503: the mackyle 1.6.1 fork this package tracked has been dead since 2012, and Debian, Fedora and Gentoo all moved to Apple's xar apple-oss-distributions/xar...
EUVD-2017-2762
Malware in sbrugna...
EUVD-2017-2761
Malware in sbrugna...
SUSE CVE-2017-11125
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xargetpath function in util.c...
DEBIAN-CVE-2017-11125
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xargetpath function in util.c...
CVE-2017-11125
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xargetpath function in util.c...
CVE-2017-11125
CVE-2017-11125 arises from a NULL pointer dereference in the XAR library: libxar.so in xar 1.6.1, in the function xar_get_path (util.c). The NVD entry lists a high base impact (CVSSv2/3: Partial confidentiality, integrity, and availability impact; network attack vector; no user interaction) with ...
PT-2017-11758
Name of the Vulnerable Software and Affected Versions xar version 1.6.1 Description The issue is related to a NULL pointer dereference in the xar get path function, located in util.c of the libxar.so library in xar. Recommendations For xar version 1.6.1, at the moment, there is no information abo...
PT-2017-11757
Name of the Vulnerable Software and Affected Versions xar version 1.6.1 Description The issue is related to a NULL pointer dereference in the xar unserialize function, located in archive.c, within the libxar.so component of xar. Recommendations For xar version 1.6.1, consider avoiding the use of...