Stay Connected:

ELSA-2022-0892

ELSA-2022-0892 - libarchive security update

Type:SECURITY
Impact:MODERATE
Release Date:2022-03-16

Description


[3.3.3-3]
- Do not follow symlinks when processing the fixup list (CVE-2021-31566)

[3.3.3-2]
- Fix handling of symbolic link ACLs (CVE-2021-23177)


Related CVEs


CVE-2021-23177
CVE-2021-31566

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) libarchive-3.3.3-3.el8_5.src.rpmf78fe4c220bb7105188ec179874c306f20a06b38a24ff6ba5d479dfd711c0282-ol8_aarch64_baseos_latest
libarchive-3.3.3-3.el8_5.src.rpmf78fe4c220bb7105188ec179874c306f20a06b38a24ff6ba5d479dfd711c0282-ol8_aarch64_codeready_builder
libarchive-3.3.3-3.el8_5.src.rpmf78fe4c220bb7105188ec179874c306f20a06b38a24ff6ba5d479dfd711c0282-ol8_aarch64_u5_baseos_patch
libarchive-3.3.3-3.el8_5.src.rpmf78fe4c220bb7105188ec179874c306f20a06b38a24ff6ba5d479dfd711c0282-ol8_aarch64_u6_baseos_base
bsdtar-3.3.3-3.el8_5.aarch64.rpm239ba448276dcec6e8240dfd475958c27b9101f31380b415f143b7c029331adc-ol8_aarch64_baseos_latest
bsdtar-3.3.3-3.el8_5.aarch64.rpm239ba448276dcec6e8240dfd475958c27b9101f31380b415f143b7c029331adc-ol8_aarch64_u5_baseos_patch
bsdtar-3.3.3-3.el8_5.aarch64.rpm239ba448276dcec6e8240dfd475958c27b9101f31380b415f143b7c029331adc-ol8_aarch64_u6_baseos_base
libarchive-3.3.3-3.el8_5.aarch64.rpmd4b12d5bdea60cad15b17c1551c7361f8396243f6c175d1f65cad9db19949a43-ol8_aarch64_baseos_latest
libarchive-3.3.3-3.el8_5.aarch64.rpmd4b12d5bdea60cad15b17c1551c7361f8396243f6c175d1f65cad9db19949a43-ol8_aarch64_u5_baseos_patch
libarchive-3.3.3-3.el8_5.aarch64.rpmd4b12d5bdea60cad15b17c1551c7361f8396243f6c175d1f65cad9db19949a43-ol8_aarch64_u6_baseos_base
libarchive-devel-3.3.3-3.el8_5.aarch64.rpm58b008e179c71ca8b5fa3fe80c97d51122a082ad81311af6c1388fdf55453987-ol8_aarch64_codeready_builder
Oracle Linux 8 (x86_64) libarchive-3.3.3-3.el8_5.src.rpmf78fe4c220bb7105188ec179874c306f20a06b38a24ff6ba5d479dfd711c0282-ol8_x86_64_baseos_latest
libarchive-3.3.3-3.el8_5.src.rpmf78fe4c220bb7105188ec179874c306f20a06b38a24ff6ba5d479dfd711c0282-ol8_x86_64_codeready_builder
libarchive-3.3.3-3.el8_5.src.rpmf78fe4c220bb7105188ec179874c306f20a06b38a24ff6ba5d479dfd711c0282-ol8_x86_64_u5_baseos_patch
libarchive-3.3.3-3.el8_5.src.rpmf78fe4c220bb7105188ec179874c306f20a06b38a24ff6ba5d479dfd711c0282-ol8_x86_64_u6_baseos_base
bsdtar-3.3.3-3.el8_5.x86_64.rpm8afac3ac8533506ce25d4361f834eac900804fb6140e4bd7fd235557d8ebd6c9-ol8_x86_64_baseos_latest
bsdtar-3.3.3-3.el8_5.x86_64.rpm8afac3ac8533506ce25d4361f834eac900804fb6140e4bd7fd235557d8ebd6c9-ol8_x86_64_u5_baseos_patch
bsdtar-3.3.3-3.el8_5.x86_64.rpm8afac3ac8533506ce25d4361f834eac900804fb6140e4bd7fd235557d8ebd6c9-ol8_x86_64_u6_baseos_base
libarchive-3.3.3-3.el8_5.i686.rpm084c588a2b7866b72cba8b48190915b5d42e99c38ac4f09ccc9affcc3fdf094d-ol8_x86_64_baseos_latest
libarchive-3.3.3-3.el8_5.i686.rpm084c588a2b7866b72cba8b48190915b5d42e99c38ac4f09ccc9affcc3fdf094d-ol8_x86_64_u5_baseos_patch
libarchive-3.3.3-3.el8_5.i686.rpm084c588a2b7866b72cba8b48190915b5d42e99c38ac4f09ccc9affcc3fdf094d-ol8_x86_64_u6_baseos_base
libarchive-3.3.3-3.el8_5.x86_64.rpm024aecfe1e87f4d6cca3512ee0970b037087b12267d5c4dd8a8984db8bdb7211-ol8_x86_64_baseos_latest
libarchive-3.3.3-3.el8_5.x86_64.rpm024aecfe1e87f4d6cca3512ee0970b037087b12267d5c4dd8a8984db8bdb7211-ol8_x86_64_u5_baseos_patch
libarchive-3.3.3-3.el8_5.x86_64.rpm024aecfe1e87f4d6cca3512ee0970b037087b12267d5c4dd8a8984db8bdb7211-ol8_x86_64_u6_baseos_base
libarchive-devel-3.3.3-3.el8_5.i686.rpm3c448dae79f8214739a617806b6b2ffce3d314449d354050b6ef5cb37658deb2-ol8_x86_64_codeready_builder
libarchive-devel-3.3.3-3.el8_5.x86_64.rpm40cfd0dcbb38b0d1dedf729cbb9cee8f592ddbdeffaee32b380a14e1a1123ec0-ol8_x86_64_codeready_builder



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights