| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
| |
Relevant vendor changes:
Issue #1237: Fix integer overflow in archive_read_support_filter_lz4.c
PR #1249: Correct some typographical and grammatical errors.
PR #1250: Minor corrections to the formatting of manual pages
Notes:
svn path=/vendor/libarchive/dist/; revision=352731
|
|
|
|
|
|
|
| |
- cosmetic changes only
Notes:
svn path=/vendor/libarchive/dist/; revision=348977
|
|
|
|
|
|
|
|
|
|
|
| |
Relevant vendor changes (release 3.4.0):
- check_symlinks_fsobj() without chdir() and fchdir()
- bsdtar.1 manpage fixes
- patches from OpenBSD to libarchive_fe/passphrase.c
Notes:
svn path=/vendor/libarchive/dist/; revision=348971
svn path=/vendor/libarchive/3.4.0/; revision=348973; tag=vendor/libarchive/3.4.0
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Relevant vendor changes:
Issue #795: XAR - do not try to add xattrs without an allocated name
PR #812: non-recursive option for extract and list
PR #958: support reading metadata from compressed files
PR #999: add --exclude-vcs option to bsdtar
Issue #1062: treat empty archives with a GNU volume header as valid
PR #1074: Handle ZIP files with trailing 0s in the extra fields
(Android APK archives)
PR #1109: Ignore padding in Zip extra field data (Android APK archives)
PR #1167: fix problems related to unreadable directories
Issue #1168: fix handling of strtol() and strtoul()
PR #1172: RAR5 - fix invalid window buffer read in E8E9 filter
PR #1174: ZIP reader - fix of MSZIP signature parsing
PR #1175: gzip filter - fix reading files larger than 4GB from memory
PR #1177: gzip filter - fix memory leak with repeated header reads
PR #1180: ZIP reader - add support for Info-ZIP Unicode Path Extra Field
PR #1181: RAR5 - fix merge_block() recursion
(OSS-Fuzz 12999, 13029, 13144, 13478, 13490)
PR #1183: fix memory leak when decompressing ZIP files with LZMA
PR #1184: fix RAR5 OSS-Fuzz issues 12466, 14490, 14491, 12817
OSS-Fuzz 12466: RAR5 - fix buffer overflow when parsing huffman tables
OSS-Fuzz 14490, 14491: RAR5 - fix bad shift-left operations
OSS-Fuzz 12817: RAR5 - handle a case with truncated huffman tables
PR #1186: RAR5 - fix invalid type used for dictionary size mask
(OSS-Fuzz 14537)
PR #1187: RAR5 - fix integer overflow (OSS-Fuzz 14555)
PR #1190: RAR5 - RAR5 don't try to unpack entries marked as directories
(OSS-Fuzz 14574)
PR #1196: RAR5 - fix a potential SIGSEGV on 32-bit builds
OSS-Fuzz 2582: RAR - fix use after free if there is an invalid entry
OSS-Fuzz 14331: RAR5 - fix maximum owner name length
OSS-Fuzz 13965: RAR5 - use unsigned int for volume number + range check
Additional RAR5 reader changes:
- support symlinks, hardlinks, file owner, file group, versioned files
- change ARCHIVE_FORMAT_RAR_V5 to 0x100000
- set correct mode for readonly directories
- support readonly, hidden and system Windows file attributes
NOTE: a version bump of libarchive will happen in the following days
Notes:
svn path=/vendor/libarchive/dist/; revision=347989
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Relevant vendor changes:
PR #1013: Add missing h_base offset when performing absolute seeks in
xar decompression
PR #1061: Add support for extraction of RAR v5 archives
PR #1066: Fix out of bounds read on empty string filename for gnutar, pax
and v7tar
PR #1067: Fix temporary file path buffer overflow in tests
IS #1068: Correctly process and verify integer arguments passed to
bsdcpio and bsdtar
PR #1070: Don't default XAR entry atime/mtime to the current time
Notes:
svn path=/vendor/libarchive/dist/; revision=339640
|
|
|
|
|
|
|
|
|
| |
Relevant vendor changes:
PR #1019: Add allocation check for the zip_entry struct
Oss-Fuzz #10192: Handle whitespace-only ACL fields correctly
Notes:
svn path=/vendor/libarchive/dist/; revision=338797
|
|
|
|
|
|
|
|
| |
libarchive 3.3.3
Notes:
svn path=/vendor/libarchive/dist/; revision=338519
svn path=/vendor/libarchive/3.3.3/; revision=338520; tag=vendor/libarchive/3.3.3
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Relevant vendor changes:
PR #905: Support for Zstandard read and write filters
PR #922: Avoid overflow when reading corrupt cpio archive
Issue #935: heap-based buffer overflow in xml_data (CVE-2017-14166)
OSS-Fuzz 2936: Place a limit on the mtree line length
OSS-Fuzz 2394: Ensure that the ZIP AES extension header is large enough
OSS-Fuzz 573: Read off-by-one error in RAR archives (CVE-2017-14502)
Security: CVE-2017-14166, CVE-2017-14502
Notes:
svn path=/vendor/libarchive/dist/; revision=324145
|
|
|
|
|
|
|
| |
libarchive 3.3.3dev
Notes:
svn path=/vendor/libarchive/dist/; revision=321672
|
|
|
|
|
|
|
|
|
|
|
| |
Release 3.3.2
Vendor changes:
PR #901: don't depend on stdin in a testcase
Notes:
svn path=/vendor/libarchive/dist/; revision=320924
svn path=/vendor/libarchive/3.3.2/; revision=320926; tag=vendor/libarchive/3.3.2
|
|
|
|
|
|
|
|
| |
Documentation, style, test suite changes and typo fixes.
New bsdtar tests for --acls and --fflags options.
Notes:
svn path=/vendor/libarchive/dist/; revision=314567
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Release 3.3.1
Notable vendor changes:
PR #501: improvements in ACL path handling
PR #724: fix hang when reading malformed cpio files
PR #864: fix out of bounds read with malformed GNU tar archives
Test suite improvements
New options to bsdtar that enable or disable reading and/or writing of:
Access Control Lists (--acls, --no-acls)
Extended file flags (--fflags, --no-fflags)
Extended attributes (--xattrs, --no-xattrs)
Notes:
svn path=/vendor/libarchive/dist/; revision=314565
svn path=/vendor/libarchive/3.3.1/; revision=314566; tag=vendor/libarchive/3.3.1
|
|
|
|
|
|
|
|
|
|
|
|
| |
Vendor bugfixes:
PR 826: OpenSSL 1.1 support
PR 830, 831, 833: Spelling fixes
OSS-Fuzz 227, 230, 239: Fix possible memory leak in archive_read_free()
OSS-Fuzz 237: Fix heap buffer overflow when reading invalid ar archives
Notes:
svn path=/vendor/libarchive/dist/; revision=310115
|
|
|
|
|
|
|
|
|
|
| |
Small improvements, style fixes, bugfixes.
Important vendor bugfixes:
Restore compatibility with Perl Archive::Tar that was broken with #825
Notes:
svn path=/vendor/libarchive/dist/; revision=309362
|
|
|
|
|
|
|
|
| |
Libarchive 3.2.2
Notes:
svn path=/vendor/libarchive/dist/; revision=307859
svn path=/vendor/libarchive/3.2.2/; revision=307860; tag=vendor/libarchive/3.2.2
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
tag v3.2.1
Fixed vendor issues:
Issue 521: Properly check reading from lzss decompression buffer
Issue 717: Fix integer overflow when computing location of volume
descriptor
Issue 718: Security fix TALOS-CAN-152
Issue 719: Security fix TALOS-CAN-154
Security: TALOS-CAN-152, TALOS-CAN-154
Notes:
svn path=/vendor/libarchive/dist/; revision=302037
|
|
|
|
|
| |
Notes:
svn path=/vendor/libarchive/dist/; revision=299425
svn path=/vendor/libarchive/3.2.0/; revision=299528; tag=vendor/libarchive/3.2.0
|
|
|
|
|
|
|
|
|
|
| |
Git branch: release
Git commit: 19f23e191f9d3e1dd2a518735046100419965804
Obtained from: https://github.com/libarchive/libarchive.git
Notes:
svn path=/vendor/libarchive/dist/; revision=248590
|
|
|
|
|
|
|
|
|
|
|
| |
Git branch: release
Git commit: 8076b31490c90aaf0edccecf760004c30bd95edc
Obtained from: https://github.com/libarchive/libarchive.git
Notes:
svn path=/vendor/libarchive/dist/; revision=238825
svn path=/vendor/libarchive/3.0.4/; revision=238833; tag=vendor/libarchive/3.0.4
|
|
|
|
|
|
|
|
|
|
| |
Git branch: release
Git commit: 9af87742342aa4f37a22ec12c4cc1c82e00ffa2f
Obtained from: https://github.com/libarchive/libarchive.git
Notes:
svn path=/vendor/libarchive/dist/; revision=231200
|
|
|
|
|
|
|
| |
Obtained from: http://libarchive.googlecode.com/svn/release/2.8
Notes:
svn path=/vendor/libarchive/dist/; revision=228905
|
|
Obtained from: http://libarchive.googlecode.com/svn/release/2.8
Notes:
svn path=/vendor/libarchive/dist/; revision=228753
|