{"id":"MGASA-2015-0208","summary":"Updated libarchive packages fix a security vulnerability","details":"Updated libarchive packages fix security vulnerability:\n\nAn out-of-bounds read flaw was found in the way libarchive processed certain\narchives. An attacker could create a specially crafted archive that, when\nprocessed by an application using the libarchive library, would cause that\napplication to crash (rhbz#1216891).\n","modified":"2026-04-16T04:28:39.718981Z","published":"2015-05-11T20:10:38Z","references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2015-0208.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=15854"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1216891"}],"affected":[{"package":{"name":"libarchive","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/libarchive?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.1.2-2.2.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2015-0208.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}