CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2016/01/30 17:25:32
Modified files:
archivers/libarchive: Tag: OPENBSD_5_8 Makefile
archivers/libarchive/patches: Tag: OPENBSD_5_8
patch-cpio_bsdcpio_1
Added files:
archivers/libarchive/patches: Tag: OPENBSD_5_8 patch-cpio_cpio_c
patch-libarchive_archive_h
patch-libarchive_archive_read_c
patch-libarchive_archive_read_support_format_cpio_c
patch-libarchive_archive_write_c
patch-libarchive_archive_write_disk_3
patch-libarchive_archive_write_disk_posix_c
patch-libarchive_test_test_write_disk_secure_c
Log message:
Apply patches for multiple security vulnerablities;
- CVE-2013-0211: denial of service via unspecified vectors
- CVE-2015-2304: directory traveral via absolute paths
- crash/infinite loop on malformed CPIO archives
>From upstream git (commits 2253154, 5935715, 3865cf2, e6c9668, 24f5de6)
via FreeBSD.
Minor bump for the new ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS option.
