Mageia alert MGASA-2015-0208 (libarchive)

From:
    	       Mageia Updates <buildsystem-daemon@mageia.org> 
To:
    	       updates-announce@ml.mageia.org 
Subject:
    	       [updates-announce] MGASA-2015-0208: Updated libarchive packages fix a security vulnerability 
Date:
    	       Mon, 11 May 2015 22:11:09 +0200
Message-ID:
    	       <20150511201109.DB51143AA1@valstar.mageia.org>
MGASA-2015-0208 - Updated libarchive packages fix a security vulnerability

Publication date: 11 May 2015
URL: http://advisories.mageia.org/MGASA-2015-0208.html
Type: security
Affected Mageia releases: 4

Description:
Updated libarchive packages fix security vulnerability:

An out-of-bounds read flaw was found in the way libarchive processed certain
archives. An attacker could create a specially crafted archive that, when
processed by an application using the libarchive library, would cause that
application to crash (rhbz#1216891).

References:
- https://bugs.mageia.org/show_bug.cgi?id=15854
- https://bugzilla.redhat.com/show_bug.cgi?id=1216891

SRPMS:
- 4/core/libarchive-3.1.2-2.2.mga4

From:		Mageia Updates <buildsystem-daemon@mageia.org>
To:		updates-announce@ml.mageia.org
Subject:		[updates-announce] MGASA-2015-0208: Updated libarchive packages fix a security vulnerability
Date:		Mon, 11 May 2015 22:11:09 +0200
Message-ID:		<20150511201109.DB51143AA1@valstar.mageia.org>