ELSA-2019-2298

ULN >
Oracle Linux Errata repository >
ELSA-2019-2298

ELSA-2019-2298 - libarchive security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2019-08-13

Description

[3.1.2-12]
- fixed use after free in RAR decoder (#1700749)
- fixed double free in RAR decoder (#1700748)

[3.1.2-11]
- fix out-of-bounds read within lha_read_data_none() (CVE-2017-14503)
- fix crash on crafted 7zip archives (CVE-2019-1000019)
- fix infinite loop in ISO9660 (CVE-2019-1000020)

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	libarchive-3.1.2-12.el7.src.rpm	53007cfb04806a57ae8be30810a221525fe9b7a83b6ed02fcfd7eed476f8b6aa	ELSA-2020-0203	ol7_aarch64_latest
	libarchive-3.1.2-12.el7.src.rpm	53007cfb04806a57ae8be30810a221525fe9b7a83b6ed02fcfd7eed476f8b6aa	ELSA-2020-0203	ol7_aarch64_u7_base
	bsdcpio-3.1.2-12.el7.aarch64.rpm	94ef16b802e9e10c9106cf15cba5cf8905b96600c9abecacc188d92d2e5d84d8	ELSA-2020-0203	ol7_aarch64_optional_latest
	bsdtar-3.1.2-12.el7.aarch64.rpm	0cb443679a27ba35ccef40d9591ed0d73c37a10231765fca56065f3608ad59a0	ELSA-2020-0203	ol7_aarch64_optional_latest
	libarchive-3.1.2-12.el7.aarch64.rpm	ca4994e7fd8d87c0d2a15033935d9451ef77af3d446dc4c4d6e8b1ec4aa7c500	ELSA-2020-0203	ol7_aarch64_latest
	libarchive-3.1.2-12.el7.aarch64.rpm	ca4994e7fd8d87c0d2a15033935d9451ef77af3d446dc4c4d6e8b1ec4aa7c500	ELSA-2020-0203	ol7_aarch64_u7_base
	libarchive-devel-3.1.2-12.el7.aarch64.rpm	6036a1f467c5c905b7bda52466aad5000b640fb7db0594da9d1038b4b6401783	ELSA-2020-0203	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	libarchive-3.1.2-12.el7.src.rpm	53007cfb04806a57ae8be30810a221525fe9b7a83b6ed02fcfd7eed476f8b6aa	ELSA-2020-0203	ol7_x86_64_latest
	libarchive-3.1.2-12.el7.src.rpm	53007cfb04806a57ae8be30810a221525fe9b7a83b6ed02fcfd7eed476f8b6aa	ELSA-2020-0203	ol7_x86_64_u7_base
	bsdcpio-3.1.2-12.el7.x86_64.rpm	0d19cf971d2d9b278d94f54a69e0e7903f33f43040462f8633d69bdafa053928	ELSA-2020-0203	ol7_x86_64_optional_latest
	bsdtar-3.1.2-12.el7.x86_64.rpm	4e0a1e12bffd4fea00e30968e6ee3085430874663ab4bd68063022ac7e7591b2	ELSA-2020-0203	ol7_x86_64_optional_latest
	libarchive-3.1.2-12.el7.i686.rpm	9b31fa9d84bf68a14ab987757490ec53f241bcc75f37f46cc9cdc2cddc8b9b18	ELSA-2020-0203	ol7_x86_64_latest
	libarchive-3.1.2-12.el7.i686.rpm	9b31fa9d84bf68a14ab987757490ec53f241bcc75f37f46cc9cdc2cddc8b9b18	ELSA-2020-0203	ol7_x86_64_u7_base
	libarchive-3.1.2-12.el7.x86_64.rpm	f13a6b299caa8106ab4c754b54ae0b975617fee7932294f88270be334cd0d245	ELSA-2020-0203	exadata_dbserver_19.3.0.0.0_x86_64_base
	libarchive-3.1.2-12.el7.x86_64.rpm	f13a6b299caa8106ab4c754b54ae0b975617fee7932294f88270be334cd0d245	ELSA-2020-0203	exadata_dbserver_19.3.1.0.0_x86_64_base
	libarchive-3.1.2-12.el7.x86_64.rpm	f13a6b299caa8106ab4c754b54ae0b975617fee7932294f88270be334cd0d245	ELSA-2020-0203	exadata_dbserver_19.3.2.0.0_x86_64_base
	libarchive-3.1.2-12.el7.x86_64.rpm	f13a6b299caa8106ab4c754b54ae0b975617fee7932294f88270be334cd0d245	ELSA-2020-0203	exadata_dbserver_19.3.3.0.0_x86_64_base
	libarchive-3.1.2-12.el7.x86_64.rpm	f13a6b299caa8106ab4c754b54ae0b975617fee7932294f88270be334cd0d245	ELSA-2020-0203	exadata_dbserver_19.3.4.0.0_x86_64_base
	libarchive-3.1.2-12.el7.x86_64.rpm	f13a6b299caa8106ab4c754b54ae0b975617fee7932294f88270be334cd0d245	ELSA-2020-0203	ol7_x86_64_latest
	libarchive-3.1.2-12.el7.x86_64.rpm	f13a6b299caa8106ab4c754b54ae0b975617fee7932294f88270be334cd0d245	ELSA-2020-0203	ol7_x86_64_u7_base
	libarchive-devel-3.1.2-12.el7.i686.rpm	543f8cb7e25936e933434891cb41987249ebad3c847617ec5106cd615b4f7d53	ELSA-2020-0203	ol7_x86_64_optional_latest
	libarchive-devel-3.1.2-12.el7.x86_64.rpm	f21d1d71d12a85a4291303b4495279d6670b3daa5c15339375d1f11ac0929a87	ELSA-2020-0203	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691