advisories/26290.adv

type: security
subject: Updated libarchive packages fix security vulnerabilities
CVE:
 - CVE-2019-19221
 - CVE-2020-9308
src:
  7:
   core:
     - libarchive-3.4.0-1.1.mga7
description: |
  The updated packages fix several issues including security vulnerabilities:

  In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c
  has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call.
  For example, bsdtar crashes via a crafted archive. (CVE-2019-19221)

  archive_read_support_format_rar5.c in libarchive before 3.4.2 attempts to
  unpack a RAR5 file with an invalid or corrupted header (such as a header
  size of zero), leading to a SIGSEGV or possibly unspecified other impact.
  (CVE-2020-9308)
references:
 - https://bugs.mageia.org/show_bug.cgi?id=26290
 - https://usn.ubuntu.com/4293-1/
ID: MGASA-2020-0127
1	type: security
2	subject: Updated libarchive packages fix security vulnerabilities
3	CVE:
4	- CVE-2019-19221
5	- CVE-2020-9308
6	src:
7	7:
8	core:
9	- libarchive-3.4.0-1.1.mga7
10	description: \|
11	The updated packages fix several issues including security vulnerabilities:
12
13	In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c
14	has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call.
15	For example, bsdtar crashes via a crafted archive. (CVE-2019-19221)
16
17	archive_read_support_format_rar5.c in libarchive before 3.4.2 attempts to
18	unpack a RAR5 file with an invalid or corrupted header (such as a header
19	size of zero), leading to a SIGSEGV or possibly unspecified other impact.
20	(CVE-2020-9308)
21	references:
22	- https://bugs.mageia.org/show_bug.cgi?id=26290
23	- https://usn.ubuntu.com/4293-1/
24	ID: MGASA-2020-0127