#
50f8aa9c |
| 13-Nov-2022 |
Antonio Huete Jimenez <tuxillo@quantumachine.net> |
vendor/libarchive: upgrade from 3.4.3 to 3.6.1
Notable changes:
- 7zip reader: fix PPMD read beyond boundary (#1671) - ZIP reader: fix possible out of bounds read (OSS-Fuzz 38766 #1672) - ISO re
vendor/libarchive: upgrade from 3.4.3 to 3.6.1
Notable changes:
- 7zip reader: fix PPMD read beyond boundary (#1671) - ZIP reader: fix possible out of bounds read (OSS-Fuzz 38766 #1672) - ISO reader: fix possible heap buffer overflow in read_children() - tar: new option "--no-read-sparse" (#1614) - ZIP reader: zstd decompression support (#1518) - extended fix for following symlinks when processing the fixup list (#1566, #1617, CVE-2021-31566) - fix invalid memory access and out of bounds read in RAR5 reader (#1491, #1492, #1493, CVE-2021-36976) - ZIP reader: Support of deflate algorithm in symbolic link decompression (#1509) - do not follow symlinks when processing the fixup list (#1566) - fixed extraction of archives with hard links pointing to itself (#1381) - fixed memory leaks in error case of archive_write_open() functions (#1456)
For details, see release notes or commit history on github: https://github.com/libarchive/libarchive/releases/tag/v3.6.1
show more ...
|
Revision tags: v6.2.2, v6.2.1, v6.2.0, v6.3.0, v6.0.1, v6.0.0, v6.0.0rc1, v6.1.0, v5.8.3, v5.8.2 |
|
#
085658de |
| 27-Jun-2020 |
Daniel Fojt <df@neosystem.org> |
vendor/libarchive: upgrade from 3.3.3 to 3.4.3
Fixes CVE-2019-18408.
New features: - support for pzstd compressed files - support for RHT.security.selinux tar extended attribute - atomic file extra
vendor/libarchive: upgrade from 3.3.3 to 3.4.3
Fixes CVE-2019-18408.
New features: - support for pzstd compressed files - support for RHT.security.selinux tar extended attribute - atomic file extraction support (bsdtar -x --safe-writes) - unicode filename support for reading lha/lzh archives - new pax write option "xattrhdr" - read support for RAR 5.0 archives - read support for ZIPX archives with xz, lzma, ppmd8 and bzip2 compression - support for non-recursive list and extract - new tar option: --exclude-vcs - 64-bit ar format support
Bugfixes: - use-after-free in a certain ARCHIVE_FAILED situation - various zstd fixes and improvements - child process handling fixes - compression buffer fix in XAR writer - fix for uname and gname longer than 32 characters in PAX writer - fix segfault when archiving hard links in ISO9660 and XAR writers - fix support for extracting 7z archive entries with Delta filter - security fixes and optimizations to write filter logic - security fix related to use of readlink(2) - sparse file handling fixes - fix reading Android APK archives - fix problems related to unreadable directories - patches from OpenBSD to libarchive_fe/passphrase.c - support extracting ACLs with in-entry comments - support extracting extattrs as non-root on non-user-writable files - various resource leak, use-after-free and crash fixes
For details, see release notes or commit history on github: https://github.com/libarchive/libarchive/wiki/ReleaseNotes
show more ...
|
Revision tags: v5.8.1, v5.8.0, v5.9.0, v5.8.0rc1, v5.6.3, v5.6.2, v5.6.1, v5.6.0, v5.6.0rc1, v5.7.0, v5.4.3, v5.4.2 |
|
#
e95abc47 |
| 13-Apr-2019 |
zrj <rimvydas.jasinskas@gmail.com> |
Import libarchive-3.3.3
Remove README.DELETED, it will be recreated on master branch.
|
Revision tags: v6.2.2, v6.2.1, v6.2.0, v6.3.0, v6.0.1, v6.0.0, v6.0.0rc1, v6.1.0, v5.8.3, v5.8.2 |
|
#
085658de |
| 27-Jun-2020 |
Daniel Fojt <df@neosystem.org> |
vendor/libarchive: upgrade from 3.3.3 to 3.4.3
Fixes CVE-2019-18408.
New features: - support for pzstd compressed files - support for RHT.security.selinux tar extended attribute - atomic file extra
vendor/libarchive: upgrade from 3.3.3 to 3.4.3
Fixes CVE-2019-18408.
New features: - support for pzstd compressed files - support for RHT.security.selinux tar extended attribute - atomic file extraction support (bsdtar -x --safe-writes) - unicode filename support for reading lha/lzh archives - new pax write option "xattrhdr" - read support for RAR 5.0 archives - read support for ZIPX archives with xz, lzma, ppmd8 and bzip2 compression - support for non-recursive list and extract - new tar option: --exclude-vcs - 64-bit ar format support
Bugfixes: - use-after-free in a certain ARCHIVE_FAILED situation - various zstd fixes and improvements - child process handling fixes - compression buffer fix in XAR writer - fix for uname and gname longer than 32 characters in PAX writer - fix segfault when archiving hard links in ISO9660 and XAR writers - fix support for extracting 7z archive entries with Delta filter - security fixes and optimizations to write filter logic - security fix related to use of readlink(2) - sparse file handling fixes - fix reading Android APK archives - fix problems related to unreadable directories - patches from OpenBSD to libarchive_fe/passphrase.c - support extracting ACLs with in-entry comments - support extracting extattrs as non-root on non-user-writable files - various resource leak, use-after-free and crash fixes
For details, see release notes or commit history on github: https://github.com/libarchive/libarchive/wiki/ReleaseNotes
show more ...
|
Revision tags: v5.8.1, v5.8.0, v5.9.0, v5.8.0rc1, v5.6.3, v5.6.2, v5.6.1, v5.6.0, v5.6.0rc1, v5.7.0, v5.4.3, v5.4.2 |
|
#
e95abc47 |
| 13-Apr-2019 |
zrj <rimvydas.jasinskas@gmail.com> |
Import libarchive-3.3.3
Remove README.DELETED, it will be recreated on master branch.
|
Revision tags: v5.4.1, v5.4.0, v5.5.0, v5.4.0rc1, v5.2.2, v5.2.1, v5.2.0, v5.3.0, v5.2.0rc, v5.0.2, v5.0.1, v5.0.0, v5.0.0rc2, v5.1.0, v5.0.0rc1, v4.8.1, v4.8.0, v4.6.2, v4.9.0, v4.8.0rc, v4.6.1, v4.6.0, v4.6.0rc2, v4.6.0rc, v4.7.0 |
|
#
6b384f39 |
| 12-May-2016 |
Peter Avalos <pavalos@dragonflybsd.org> |
Import libarchive-3.2.0.
|