godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-01 13:49:03 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
2019.02.x
buildroot/package/libarchive
History
Peter Korsgaard ffacda24e7 package/libarchive: add upstream security fix for CVE-2019-19221 
Fixes the following security issue:

- CVE-2019-19221: In Libarchive 3.4.0, archive_wstring_append_from_mbs in
  archive_string.c has an out-of-bounds read because of an incorrect mbrtowc
  or mbtowc call.  For example, bsdtar crashes via a crafted archive.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2020-01-10 21:02:14 +01:00
..
0001-Avoid-a-double-free-when-a-window-size-of-0-is-speci.patch
0002-rar-file-split-across-multi-part-archives-must-match.patch
0003-Skip-0-length-ACL-fields.patch
0004-warc-consume-data-once-read.patch
0005-iso9660-Fail-when-expected-Rockridge-extensions-is-m.patch
0006-7zip-fix-crash-when-parsing-certain-archives.patch
0007-RAR-reader-fix-use-after-free.patch
0008-Bugfix-and-optimize-archive_wstring_append_from_mbs.patch
Config.in
libarchive.hash
libarchive.mk