Changes made to bug 1377926

Back to bug 1377926

Who	When	What	Removed	Added
Doran Moppert	2016-09-21 03:33:27 UTC	Blocks		1376684
Doran Moppert	2016-09-21 06:19:36 UTC	Whiteboard	impact=moderate,public=20160915,reported=20160915,source=oss-security,cwe=CWE-121,rhel-6/libarchive=new,rhel-7/libarchive=new,fedora-all/libarchive=new	impact=moderate,public=20160915,reported=20160915,source=oss-security,cwe=CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Tomas Hoger	2016-09-21 06:53:24 UTC	Summary	stack based buffer overflow in bsdtar_expand_char (util.c)	libarchive: stack based buffer overflow in bsdtar_expand_char (util.c)
Doran Moppert	2016-09-22 03:58:06 UTC	Whiteboard	impact=moderate,public=20160915,reported=20160915,source=oss-security,cwe=CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected	impact=moderate,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Doran Moppert	2016-09-22 03:58:12 UTC	Whiteboard	impact=moderate,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected	impact=moderate,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Doran Moppert	2016-09-22 03:58:18 UTC	Whiteboard	impact=moderate,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Doran Moppert	2016-09-22 03:58:23 UTC	Severity	medium	low
Doran Moppert	2016-09-22 03:58:29 UTC	Priority	medium	low
Doran Moppert	2016-09-22 03:58:35 UTC	Whiteboard	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-131-,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Doran Moppert	2016-09-22 04:04:03 UTC	Whiteboard	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-131-,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-131->CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected
Slawomir Czarko	2016-09-22 10:09:23 UTC	CC		slawomir
Doran Moppert	2016-09-23 03:15:21 UTC	Depends On		1378666
Doran Moppert	2016-09-23 03:17:50 UTC	Whiteboard	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-131->CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=affected,fedora-all/libarchive=affected	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-131->CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=wontfix,fedora-all/libarchive=affected
Doran Moppert	2016-09-23 03:20:52 UTC	Status	NEW	CLOSED
		Resolution	---	NOTABUG
		Last Closed		2016-09-22 23:20:52 UTC
Doran Moppert	2016-09-23 03:21:40 UTC	Resolution	NOTABUG	WONTFIX
Doran Moppert	2016-10-18 04:10:52 UTC	Alias		CVE-2016-8687
Doran Moppert	2016-10-18 04:10:57 UTC	Summary	libarchive: stack based buffer overflow in bsdtar_expand_char (util.c)	CVE-2016-8687 libarchive: stack based buffer overflow in bsdtar_expand_char (util.c)
Doran Moppert	2016-10-18 04:14:51 UTC	Whiteboard	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-131->CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=wontfix,fedora-all/libarchive=affected	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-131->CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=wontfix,fedora-all/libarchive=affected,epel-5/libarchive=affected,epel-6/libarchive3=affected
Doran Moppert	2016-10-18 04:15:00 UTC	CC		anto.trande, fedora, ndevos
Doran Moppert	2016-10-18 04:19:01 UTC	Depends On		1385674
Doran Moppert	2016-10-18 04:20:10 UTC	Depends On		1385675
Doran Moppert	2016-10-18 04:21:20 UTC	Depends On		1385676
Doran Moppert	2016-10-18 04:30:54 UTC	Blocks		1385672
Doran Moppert	2016-10-18 04:30:54 UTC	CC		amaris
Adam Mariš	2016-11-08 16:10:30 UTC	CC	amaris
Yasuhiro Ozone	2017-03-07 23:53:34 UTC	CC		yozone
Tomas Hoger	2019-04-10 13:06:45 UTC	Fixed In Version		libarchive 3.2.2
Product Security DevOps Team	2019-09-29 13:57:05 UTC	Whiteboard	impact=low,public=20160915,reported=20160915,source=oss-security,cvss2=1.9/AV:L/AC:M/Au:N/C:N/I:N/A:P,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L,cwe=CWE-131->CWE-121,rhel-6/libarchive=notaffected,rhel-7/libarchive=wontfix,fedora-all/libarchive=affected,epel-5/libarchive=affected,epel-6/libarchive3=affected

Back to bug 1377926