Stay Secure with the Latest Linux Advisories

security advisoryFedoracritical update

Fedora 29: FEDORA-2018-7734354526 Critical: Libarchive CVE Issues

latest upstream release, fixes several CVE security issues. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-7734354526 2018-10-31 16:40:00.045265 --------------------------------------------------------------------------------Name : libarchive Product : Fedora 29 Version : 3.3.3 Release : 1.fc29 URL : http://www.libarchive.org/ Summary : A library for handling streaming archive formats Description : Libarchive is a programming library that can create and read several different streaming archive formats, including most popular tar variants, several cpio formats, and both BSD and GNU ar variants. It can also write shar archives and read ISO9660 CDROM images and ZIP archives. --------------------------------------------------------------------------------Update Information: latest upstream release, fixes several CVE security issues --------------------------------------------------------------------------------ChangeLog: * Tue Oct 23 2018 Pavel Raiskup - 3.3.3-1 - the latest upstream release * Wed Jul 18 2018 Pavel Raiskup - 3.3.2-3 - drop use of %ldconfig_scriptlets --------------------------------------------------------------------------------References: [ 1 ] Bug #1449531 - CVE-2016-10349 CVE-2016-10350 CVE-2017-14166 CVE-2017-14501 CVE-2017-14502 CVE-2017-14503 libarchive: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1449531 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-7734354526' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Debian libarchive upgrade DEBIAN-2019-9841234567 resolves significant vulnerabilities aimed at strengthening integrity and performance.. Fedora libarchive, Security Update 2018, Archive Formats. . Severity: Critical. LinuxSecurity.com Team

Oct 31, 2018 •Critical Fedora