Vulnerability in libarchive < 3.0.0 may allow remote code execution
https://bugzilla.redhat.com/show\_bug.cgi?id=705849
Patches included in report above do not apply cleanly to 2.8.5.
Solution:
- Upgrade to v3.0.2
(from redmine: issue id 901, created on 2012-01-06, closed on 2012-01-16)
- Changesets:
- Revision 28524286 by Natanael Copa on 2012-01-10T12:52:19Z:
main/libarchive: upgrade to 3.0.2
fixes #901