[ubuntu/jammy-security] libarchive 3.6.0-1ubuntu1.2 (Accepted)
Evan Caville
evan.caville at canonical.com
Wed Oct 16 03:15:53 UTC 2024
libarchive (3.6.0-1ubuntu1.2) jammy-security; urgency=medium
* SECURITY UPDATE: NULL pointer dereference
- debian/patches/CVE-2022-36227.patch: Add NULL check in archive_write
functions
- CVE-2022-36227
* SECURITY UPDATE: Out of bounds access
- debian/patches/CVE-2024-48957.patch: check dst isn't less than or
equal to src in execute_filter_audio
- CVE-2024-48957
* SECURITY UPDATE: Out of bounds access
- debian/patches/CVE-2024-48958.patch: check dst isn't less than or
equal to src in execute_filter_delta
- CVE-2024-48958
Date: 2024-10-15 04:44:10.485120+00:00
Changed-By: Bruce Cable <bruce.cable at canonical.com>
Signed-By: Evan Caville <evan.caville at canonical.com>
https://launchpad.net/ubuntu/+source/libarchive/3.6.0-1ubuntu1.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list