stable

arj-3.10.22-22.fc21

FEDORA-2015-5603 created by robert 10 years ago for Fedora 21
  • Added patch from Debian to avoid free on invalid pointer due to a buffer overflow (#1196751, #1207180)
  • Added patch from Debian for symlink directory traversal (#1178824)
  • Added patch from Debian to fix the directory traversal via //multiple/leading/slash (#1178824)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2015-5603

This update has been submitted for testing by robert.

10 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/54855/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/54855/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 testing updates repository.

10 years ago

This update has been pushed to testing

10 years ago
User Icon jamesnz commented & provided feedback 10 years ago
karma

No regressions that I can see.

This update has been submitted for stable by robert.

10 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/56508/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/56508/steps/runtask/logs/stdio (results are informative only)

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/56509/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 stable updates repository.

10 years ago

This update has been pushed to stable

10 years ago

Please login to add feedback.

Metadata
Type
security
Karma
1
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
10 years ago
in testing
10 years ago
in stable
10 years ago
modified
10 years ago
BZ#1178824 CVE-2015-0556 CVE-2015-0557 arj: two directory traversal flaws
0
0
BZ#1178825 arj: two directory traversal flaws [fedora-all]
0
0
BZ#1196751 arj: buffer overflow write access initiated by a size read from a crafted archive
0
0
BZ#1196753 arj: buffer overflow write access initiated by a size read from a crafted archive [fedora-all]
0
0
BZ#1207180 CVE-2015-2782 arj: free on invalid pointer due to to buffer overflow
0
0
BZ#1207181 CVE-2015-2782 arj: free on invalid pointer due to to buffer overflow [fedora-all]
0
0

Automated Test Results