gnu: libarchive: Graft to 3.7.7. [security fixes] - ~cnx/guix

diff options

author	Liliana Marie Prikler <liliana.prikler@gmail.com>	2024-11-09 15:27:49 +0100
committer	Maxim Cournoyer <maxim.cournoyer@gmail.com>	2024-11-12 17:41:14 +0900
commit	a6dab6e9156db469c65fb5334df8cc8735ca6897 (patch)
tree	6435e90fde80b69046a7c95d2c52a8e8b4bca1c6 /gnu/machine
parent	0cbd830ebb8ce802afe99c439ce7fdee448074be (diff)
download	guix-a6dab6e9156db469c65fb5334df8cc8735ca6897.tar.gz

gnu: libarchive: Graft to 3.7.7. [security fixes]

* gnu/packages/backup.scm (libarchive): Add replacement with libarchive/fixed.
(libarchive/fixed): New variable.

Fixes: Out of bounds access in ZIP files [CVE-2024-37407].
Fixes: Out of bounds access in RAR files [CVE-2024-48957, CVE-2024-48958].
Fixes: Race condition in multi-threaded systems [CVE-2023-30571].
Fixes: NULL pointer dereference [CVE-2022-36227].
Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>

Diffstat (limited to 'gnu/machine')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: