An out-of-bounds read due to incorrect sign extension was found in libarchive. A specially crafted ZIP file could cause libarchive to crash. A few bytes of heap memory within a 256-byte region could potentially be exposed. Upstream bug: https://github.com/libarchive/libarchive/issues/514 Upstream fix: https://github.com/libarchive/libarchive/commit/9e0689c libarchive-2.8 does not include support for "Info-Zip Unix extra field (type 3)", where this flaw was found, and is thus unaffected.
Created libarchive tracking bugs for this issue: Affects: fedora-all [bug 1352776]
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2016:1844 https://rhn.redhat.com/errata/RHSA-2016-1844.html