Fedora 40: FEDORA-2024-80e4603b92 critical: libarchive out-of-bounds access
fedora
October 19, 2024
Fix for CVE-2024-48957 Automatic update for libarchive-3.7.2-6.fc40.
Summary
Libarchive is a programming library that can create and read several different
streaming archive formats, including most popular tar variants, several cpio
formats, and both BSD and GNU ar variants. It can also write shar archives and
read ISO9660 CDROM images and ZIP archives.
Update Information:
Fix for CVE-2024-48957 Automatic update for libarchive-3.7.2-6.fc40.
Change Log
* Mon Oct 14 2024 Lukas Javorsky
References
[ 1 ] Bug #2317764 - CVE-2024-48957 libarchive: Out-of-bounds access in libarchive's archive file handling [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2317764
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-80e4603b92' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: libarchive
Product: Fedora 40
Version: 3.7.2
Release: 7.fc40
Summary: A library for handling streaming archive formats
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!