18 lines
870 B
Plaintext
18 lines
870 B
Plaintext
<patchinfo incident="47">
|
|
<!-- generated from request(s) 335514 -->
|
|
<issue tracker="bnc" id="1225971">VUL-0: CVE-2024-20696: libarchive: heap based out-of-bounds write</issue>
|
|
<issue tracker="bnc" id="1225972">VUL-0: CVE-2024-20697: libarchive: Out of bounds Remote Code Execution Vulnerability</issue>
|
|
<issue tracker="cve" id="2024-20696"/>
|
|
<issue tracker="cve" id="2024-20697"/>
|
|
<packager>ateixeira</packager>
|
|
<rating>important</rating>
|
|
<category>security</category>
|
|
<summary>Security update for libarchive</summary>
|
|
<description>This update for libarchive fixes the following issues:
|
|
|
|
- CVE-2024-20696: Fixed out-of-bounds access in in copy_from_lzss_window_to_unp() (bsc#1225971)
|
|
- CVE-2024-20697: Fixed heap based buffer overflow in rar e8 filter (bsc#1225972)
|
|
</description>
|
|
<package>libarchive</package>
|
|
<seperate_build_arch/>
|
|
</patchinfo> |