Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

libarchive13-3.3.2-lp150.10.1 RPM for ppc64le

From OpenSuSE Ports Leap 15.0 updates for ppc64le

Name: libarchive13 Distribution: openSUSE Leap 15.0
Version: 3.3.2 Vendor: openSUSE
Release: lp150.10.1 Build date: Thu Nov 28 16:18:26 2019
Group: Development/Libraries/C and C++ Build host: obs-power8-01
Size: 1154673 Source RPM: libarchive-3.3.2-lp150.10.1.src.rpm
Summary: Library to work with several different streaming archive formats
Libarchive is a programming library that can create and read several
different streaming archive formats, including most popular tar
variants and several cpio formats. It can also write shar archives and
read ISO9660 CDROM images. The bsdtar program is an implementation of
tar(1) that is built on top of libarchive. It started as a test
harness, but has grown and is now the standard system tar for FreeBSD 5
and 6.

The libarchive library offers a number of features that make it both
very flexible and very powerful.

- Automatic format detection: libarchive can automatically determine
   both the compression and the archive format, regardless of the
   data source. Most tar implementations do not automatically detect
   the compression format, few implementation that can correctly do
   this when reading from stdin or a socket. (The tar program
   included with Gunnar Ritter's heirloom collection also does full
   automatic format detection.)

- Writes POSIX formats: libarchive writes POSIX-standard formats,
   including "ustar," "pax interchange format," and the POSIX "cpio"

- Supports pax interchange format: Pax interchange format (which,
   despite the name, is really an extended tar format) eliminates
   almost all limitations of historic tar formats and provides a
   standard method for incorporating vendor-specific extensions.
   libarchive exploits this extension mechanism to support ACLs and
   file flags, for example. (Joerg Schilling's star archiver is
   another open-source tar program that supports pax interchange

- Reads popular formats: libarchive can read GNU tar, ustar, pax
   interchange format, cpio, and older tar variants. The internal
   architecture is easily extensible. The only requirement for
   support is that it be possible to read the format without seeking
   in the file. (For example, a format that includes a compressed
   size field before the data cannot be correctly written without

- High-Level API: the libarchive API makes it fairly simple to build
   an archive from a list of filenames or to extract the entries
   from an archive. However, the API also provides extreme
   flexibility with regards to data sources. For example, there are
   generic hooks that allow you to write an archive to a socket or
   read data from an archive entry into a memory buffer.

- Extensible. The internal design uses generic interfaces for
compression, archive format detection and decoding, and archive data
I/O. It should be very easy to add new formats, new compression
methods, or new ways of reading/writing archives.






* Fri Oct 25 2019 Adrian Schröter <>
  - Added patch:
    * CVE-2019-18408.patch Fixes use-after-free in a certain ARCHIVE_FAILED situation (bsc#1155079)
* Tue Feb 05 2019 Adrian Schröter <>
  - Added patches:
    * CVE-2019-1000019.patch Fixes 7zip crash (boo#1124341)
    * CVE-2019-1000020.patch ISO9660 infinite loop fixed (boo#1124342)
* Thu Jan 03 2019 Karol Babioch <>
  - Added patches:
    * CVE-2018-1000877.patch, which fixes a double free vulnerability in RAR
      decoder (CVE-2018-1000877 bsc#1120653)
    * CVE-2018-1000878.patch, which fixes a Use-After-Free vulnerability in RAR
      decoder (CVE-2018-1000878 bsc#1120654)
    * CVE-2018-1000879.patch, which fixes a NULL Pointer Dereference
      vulnerability in ACL parser (CVE-2018-1000879 bsc#1120656)
    * CVE-2018-1000880.patch, which fixes an improper input validation
      vulnerability in WARC parser (CVE-2018-1000880 bsc#1120659)
* Wed Oct 10 2018 Adrian Schröter <>
  - CVE-2017-14502.patch: bsc#1059100
    CVE-2017-14501.patch: CVE-2017-14503 bsc#1057514 bsc#1059139
* Thu Sep 07 2017
  - update to version 3.3.2
    * NFSv4 ACL support for Linux (librichacl)
  - fix-CVE-2017-14166.patch (boo#1057514)
* Mon Apr 03 2017
  - update to version 3.3.1
    * Security & Feature release
      Details are not documented from upstream yet
      fix-extract-over-links.patch and libarchive-openssl.patch obsoleted
* Fri Dec 02 2016
  - fix extracting over symlinks: fix-extract-over-links.patch
    the problem is solved upstream different, but git master
    is too different atm.
* Wed Oct 26 2016
  - update to version 3.2.2
    Unspecified security fixes, but at least:
    * CVE-2016-8687
    * CVE-2016-8689
    * CVE-2016-8688
    * CVE-2016-5844
    * CVE-2016-6250
    * CVE-2016-5418
  - obsoletes fix-build.patch
* Sat Jul 23 2016
  - make bsdtar require a matching libarchive version to avoid
    missing symbol errors
* Mon Jun 20 2016
  - update to version 3.2.1
    Fixes a number of security issues:
      CVE-2015-8934, CVE-2015-8933, CVE-2015-8917, CVE-2016-4301, CVE-2016-4300
  - and fixing the build (fix-build.patch)
* Thu Jun 16 2016
  - limit size of symlinks in cpio archives (CVE-2016-4809, boo#984990)
* Mon May 09 2016
  - 4GB _constraints for ppc64le only, it would break other archs
  - update to version 3.2.0
    * Fixes CVE-2016-1541
    * Fixes CVE-2015-8928
    * changes are only documented in git history
    * updated openssl patch
    * new bsdcat utility
  - removed obsolete patches for:
    * CVE-2013-0211.patch
    * directory-traversal-fix.patch
    * libarchive-xattr.patch
* Fri May 06 2016
  - add _constraints memory 4096MB to avoid ppc64le build failure
* Sat Sep 19 2015
  - build static lib on RHEL 7
* Sun Mar 22 2015
  - RHEL/CentOS build fix, skipping autoreconf
* Sun Mar 15 2015
  - add CVE for previous change
* Thu Mar 05 2015
  - fix a directory traversal in cpio tool (bnc#920870)
    directory-traversal-fix.patch CVE-2015-2304
* Tue Nov 11 2014
  - Added CVE-2013-0211.patch to fix CVE-2013-0211 (bnc#800024)



Generated by rpm2html 1.8.1

Fabrice Bellet, Sat Oct 9 12:25:58 2021