[ALSA-2022:5252] Moderate: libarchive security update
Type:
security
Severity:
moderate
Release date:
2022-07-21
Description:
The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file managers. Security Fix(es): * libarchive: an out-of-bounds read via the component zipx_lzma_alone_init (CVE-2022-26280) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libarchive-3.5.3-2.el9_0.aarch64.rpm 155491dded2a1576be137bef4d2289693ab1d1c706e03d83f00bf898869f39cd
aarch64 bsdtar-3.5.3-2.el9_0.aarch64.rpm 28d76814b85119baadaa92702e877cfb0daa48561d26af6a240197b14d39bfbf
aarch64 libarchive-devel-3.5.3-2.el9_0.aarch64.rpm f1df8b4c8417ba417697bb6b9c4f8a33753d157a95ab2dd613d568bf8c689bb0
i686 libarchive-3.5.3-2.el9_0.i686.rpm 0e092bde47271bc548721c5f6ee2ac7626ba4c29c460d7281b29b32e4c8b4797
i686 libarchive-devel-3.5.3-2.el9_0.i686.rpm 33d1567208bd84d8697507947591691b0ab6ae6761160c181847d1c67e5ea845
ppc64le libarchive-devel-3.5.3-2.el9_0.ppc64le.rpm 014a2db1037b53c695e7c91b05e3f652a834d9ea545c1ca46bc7e676a67da327
ppc64le libarchive-3.5.3-2.el9_0.ppc64le.rpm 763959ef8d263ab5857c84e5255efdb0f343378f7a39310cf46606963e674184
ppc64le bsdtar-3.5.3-2.el9_0.ppc64le.rpm b36034c64c30f92db3e52e0e38f7171ed6ac0090a0d2e03322c6fd702729dc42
s390x libarchive-3.5.3-2.el9_0.s390x.rpm 9d9a21f53de7ffbe1585ec4f93c5fe2b29e32232fa87d0919796e4ff9b28b6a7
s390x bsdtar-3.5.3-2.el9_0.s390x.rpm a91013540de7ae254a64677c1040c97435f3aa4858a049101e762cb4944777bf
s390x libarchive-devel-3.5.3-2.el9_0.s390x.rpm cf08e05da34f5fe074325ed87c077de2deb35197eb5ac2a158788053b1a07afe
x86_64 libarchive-3.5.3-2.el9_0.x86_64.rpm 035f3b90a81b61d846914a6953804d32e09f0c6c3b2978f783c964c0cfe2c164
x86_64 bsdtar-3.5.3-2.el9_0.x86_64.rpm 042bd93df93412ecaf7c6b59137e7ab45db3f03987046b74f8da2b5375015a9b
x86_64 libarchive-devel-3.5.3-2.el9_0.x86_64.rpm 62d30b0fc078e27e530e051a08cf75a297905e7c495d733de96192fd15dbfb63
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.