Date: Wed, 8 Nov 2006 17:17:10 +0100 From: "Simon L. Nielsen" <simon@FreeBSD.org> To: Josh Paetzel <josh@tcbug.org> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-06:24.libarchive Message-ID: <20061108161709.GG1303@zaphod.nitro.dk> In-Reply-To: <200611080936.03101.josh@tcbug.org> References: <200611081413.kA8EDtA7011912@freefall.freebsd.org> <200611080936.03101.josh@tcbug.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2006.11.08 10:36:02 -0500, Josh Paetzel wrote: > On Wednesday 08 November 2006 08:13, FreeBSD Security Advisories > wrote: > > =================================================================== > >========== FreeBSD-SA-06:24.libarchive > > Security Advisory The FreeBSD Project > > > > Topic: Infinite loop in corrupt archives handling in > > libarchive(3) > > > > Category: core > > Module: libarchive > > Announced: 2006-11-08 > > Credits: Rink Springer > > Affects: FreeBSD 6-STABLE after 2006-09-05 05:23:51 UTC > > Corrected: 2006-11-08 14:05:40 UTC (RELENG_6, 6.2-RC1) > > CVE Name: CVE-2006-5680 > > > > For general information regarding FreeBSD Security Advisories, > > Maybe this is an obvious question, but libarchive has been in the > system since 5.3, but this issue only affects RELENG_6? So anyone > tracking RELENG_6_1 isn't affected? Correct, the bug was introduced after 6.1 was branched. -- Simon L. Nielsen
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061108161709.GG1303>