Peter Korsgaard ffacda24e7 package/libarchive: add upstream security fix for CVE-2019-19221 ...

Fixes the following security issue:

- CVE-2019-19221: In Libarchive 3.4.0, archive_wstring_append_from_mbs in
  archive_string.c has an out-of-bounds read because of an incorrect mbrtowc
  or mbtowc call.  For example, bsdtar crashes via a crafted archive.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

2020-01-10 21:02:14 +01:00

..

0001-Avoid-a-double-free-when-a-window-size-of-0-is-speci.patch

…

0002-rar-file-split-across-multi-part-archives-must-match.patch

…

0003-Skip-0-length-ACL-fields.patch

…

0004-warc-consume-data-once-read.patch

…

0005-iso9660-Fail-when-expected-Rockridge-extensions-is-m.patch

…

0006-7zip-fix-crash-when-parsing-certain-archives.patch

…

0007-RAR-reader-fix-use-after-free.patch

package/libarchive: add upstream security fix for CVE-2019-18408

2019-11-03 19:42:50 +01:00

0008-Bugfix-and-optimize-archive_wstring_append_from_mbs.patch

package/libarchive: add upstream security fix for CVE-2019-19221

2020-01-10 21:02:14 +01:00

Config.in

…

libarchive.hash

…

libarchive.mk

…