Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
HBSD: Fix "libarchive vulnerability 2"
Around a week or so ago, a report[2] was made public showing FreeBSD susceptible to numerous vulnerabilities in freebsd-update, portsnap, libarchive, bsdtar, and bspatch. At least one of the vulnerabilities has been fixed due to libarchive being updated to 3.2.1 in both HEAD, 11-STABLE, and 10-STABLE. This commit addresses one of the vulnerabilities in libarchive/bsdtar. As I validate more vulnerabilities, more fixes may come. [1]: https://hardenedbsd.org/~shawn/vulns/freebsd/2016-07-29/libarchive.txt Signed-off-by: Shawn Webb <shawn.webb@hardenedbsd.org> Reported-by: Some anonymous person MFC-to: 11-STABLE MFC-to: 10-STABLE
- Loading branch information