Back to bug 1377925

Who When What Removed Added
Doran Moppert 2016-09-21 03:32:05 UTC Blocks 1376684
Doran Moppert 2016-09-21 06:19:04 UTC Whiteboard impact=moderate,public=20160915,reported=20160915,source=oss-security,cwe=CWE-122,rhel-6/libarchive=new,rhel-7/libarchive=new,fedora-all/libarchive=new impact=moderate,public=20160915,reported=20160915,source=oss-security,cwe=CWE-122,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Tomas Hoger 2016-09-21 06:53:14 UTC Summary heap based buffer overflow in read_header (archive_read_support_format_7zip.c) libarchive: heap based buffer overflow in read_header (archive_read_support_format_7zip.c)
Doran Moppert 2016-09-22 03:57:22 UTC Whiteboard impact=moderate,public=20160915,reported=20160915,source=oss-security,cwe=CWE-122,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected impact=moderate,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-122,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Doran Moppert 2016-09-22 03:57:28 UTC Whiteboard impact=moderate,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-122,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected impact=moderate,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-122,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Doran Moppert 2016-09-22 03:57:33 UTC Whiteboard impact=moderate,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-122,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-122,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Doran Moppert 2016-09-22 03:57:38 UTC Severity medium low
Doran Moppert 2016-09-22 03:57:44 UTC Priority medium low
Doran Moppert 2016-09-22 03:57:50 UTC Whiteboard impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-122,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-228-,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Doran Moppert 2016-09-22 04:03:51 UTC Whiteboard impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-228-,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-228->CWE-125,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Slawomir Czarko 2016-09-22 10:08:57 UTC CC slawomir
Doran Moppert 2016-09-23 03:16:08 UTC Depends On 1378668
Doran Moppert 2016-09-23 03:18:44 UTC Whiteboard impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-228->CWE-125,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-228->CWE-125,rhel-6/libarchive=notaffected,rhel-7/libarchive=wontfix,fedora-all/libarchive=affected
Doran Moppert 2016-09-23 03:21:06 UTC Status NEW CLOSED
Resolution --- NOTABUG
Last Closed 2016-09-22 23:21:06 UTC
Doran Moppert 2016-09-23 03:22:16 UTC Resolution NOTABUG WONTFIX
Doran Moppert 2016-10-18 04:14:00 UTC Alias CVE-2016-8689
Doran Moppert 2016-10-18 04:14:05 UTC Summary libarchive: heap based buffer overflow in read_header (archive_read_support_format_7zip.c) CVE-2016-8689 libarchive: heap based buffer overflow in read_header (archive_read_support_format_7zip.c)
Doran Moppert 2016-10-18 04:16:06 UTC Whiteboard impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-228->CWE-125,rhel-6/libarchive=notaffected,rhel-7/libarchive=wontfix,fedora-all/libarchive=affected impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-228->CWE-125,rhel-6/libarchive=notaffected,rhel-7/libarchive=wontfix,fedora-all/libarchive=affected,epel-5/libarchive=affected,epel-6/libarchive3=affected
Doran Moppert 2016-10-18 04:16:15 UTC CC anto.trande, fedora, ndevos
Doran Moppert 2016-10-18 04:19:01 UTC Depends On 1385674
Doran Moppert 2016-10-18 04:20:10 UTC Depends On 1385675
Doran Moppert 2016-10-18 04:21:20 UTC Depends On 1385676
Doran Moppert 2016-10-18 04:31:05 UTC Blocks 1385672
CC amaris
Adam Mariš 2016-11-08 15:51:35 UTC CC amaris
Tomas Hoger 2019-04-10 12:57:28 UTC Fixed In Version libarchive 3.2.2
Product Security DevOps Team 2019-09-29 13:57:05 UTC Whiteboard impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L,cwe=CWE-228->CWE-125,rhel-6/libarchive=notaffected,rhel-7/libarchive=wontfix,fedora-all/libarchive=affected,epel-5/libarchive=affected,epel-6/libarchive3=affected

Back to bug 1377925