Univention Bugzilla – Bug 55625
libarchive: Multiple issues (5.0)
Last modified: 2023-02-01 17:24:21 CET
New Debian libarchive 3.3.3-4+deb10u3 fixes: This update addresses the following issue: * NULL pointer dereference in archive_write.c (CVE-2022-36227)
--- mirror/ftp/pool/main/liba/libarchive/libarchive_3.3.3-4+deb10u2.dsc +++ apt/ucs_5.0-0-errata5.0-2/source/libarchive_3.3.3-4+deb10u3.dsc @@ -1,3 +1,9 @@ +3.3.3-4+deb10u3 [Sun, 29 Jan 2023 14:03:02 +0100] Thorsten Alteholz <debian@alteholz.de>: + + * Non-maintainer upload by the LTS team. + * CVE-2022-36227 + null pointer dereference due to missing check after calloc + 3.3.3-4+deb10u2 [Mon, 21 Nov 2022 16:48:59 +0100] Sylvain Beucler <beuc@debian.org>: * Non-maintainer upload by the LTS Security Team. <http://piuparts.knut.univention.de/5.0-2/#6737870426619182140>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-2] c8f97eda1a Bug #55625: libarchive 3.3.3-4+deb10u3 doc/errata/staging/libarchive.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x558>