CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

projects / FreeBSD / FreeBSD.git / commit

author	Martin Matuska <mm@FreeBSD.org>
	Thu, 7 Sep 2023 15:18:12 +0000 (17:18 +0200)
committer	Martin Matuska <mm@FreeBSD.org>
	Thu, 7 Sep 2023 15:22:34 +0000 (17:22 +0200)
commit	f10f65999fe56e92f00b5bc5d27ac342cfea5364
tree	eb1fa6fa4b768c00645eb5a5100e48ccdd89fbe1	tree \| snapshot
parent	2afef29b2c0b59182c6c1e133733943eafab714d	commit \| diff
parent	a5913a473bb0b6e194a2fe0e55d3166e0eed8aaf	commit \| diff

libarchive: merge security fix from vendor branch

This commit fixes a couple of security vulnerabilities in the PAX writer:
1. Heap overflow in url_encode() in archive_write_set_format_pax.c
2. NULL dereference in archive_write_pax_header_xattrs()
3. Another NULL dereference in archive_write_pax_header_xattrs()
4. NULL dereference in archive_write_pax_header_xattr()

Security: No known reference yet
Obtained from: https://github.com/libarchive/libarchive/commit/1b4e0d0f9
MFC after: 3 days

contrib/libarchive/libarchive/archive_write_set_format_pax.c

diff1 |

diff2 |

blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom