VIaw067210
	for ports-bugs@FreeBSD.org; Mon, 29 Apr 2024 08:31:18 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f
From: bugzilla-noreply@freebsd.org
To: ports-bugs@FreeBSD.org
Subject: [Bug 278588] [exp-run] libarchive 3.7.4
Date: Mon, 29 Apr 2024 08:31:18 +0000
X-Bugzilla-Reason: CC
X-Bugzilla-Type: changed
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Ports & Packages
X-Bugzilla-Component: Ports Framework
X-Bugzilla-Version: Latest
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: Affects Only Me
X-Bugzilla-Who: commit-hook@FreeBSD.org
X-Bugzilla-Status: New
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: mm@FreeBSD.org
X-Bugzilla-Flags: exp-run+
X-Bugzilla-Changed-Fields: 
Message-ID: <bug-278588-7788-1CSd0adhGX@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-278588-7788@https.bugs.freebsd.org/bugzilla/>
References: <bug-278588-7788@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-ports-bugs
List-Help: <mailto:ports-bugs+help@freebsd.org>
List-Post: <mailto:ports-bugs@freebsd.org>
List-Subscribe: <mailto:ports-bugs+subscribe@freebsd.org>
List-Unsubscribe: <mailto:ports-bugs+unsubscribe@freebsd.org>
X-BeenThere: freebsd-ports-bugs@freebsd.org
Sender: owner-freebsd-ports-bugs@FreeBSD.org
MIME-Version: 1.0

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278588

--- Comment #2 from commit-hook@FreeBSD.org ---
A commit in branch main references this bug:

URL:
https://cgit.FreeBSD.org/src/commit/?id=3D13d826ff947d9026f98e317e7385b22ab=
fc0eace

commit 13d826ff947d9026f98e317e7385b22abfc0eace
Merge: d289382897e7 51c823ac2777
Author:     Martin Matuska <mm@FreeBSD.org>
AuthorDate: 2024-04-29 08:15:04 +0000
Commit:     Martin Matuska <mm@FreeBSD.org>
CommitDate: 2024-04-29 08:17:53 +0000

    libarchive: merge from vendor branch

    Libarchive 3.7.4 + three fixes from master

    Security fixes:
     #2135 rar: Fix OOB in rar e8 filter (CVE-2024-26256)
     #2145 zip: Fix out of boundary access
     #2148 rar: Fix OOB in rar delta filter
     #2149 rar: Fix OOB in rar audio filter

    Important bugfixes:
     #2131 7zip: Limit amount of properties
     #2110 bsdtar: Fix error handling around strtol() usages
     #2116 passphrase: Never allow empty passwords
     #2124 rar: Fix "File CRC Error" when extracting specific rar4 archives
     #2123 xar: Avoid infinite link loop
     #2150 xar: Fix another infinite loop and expat error handling
     #2108 zip: Update AppleDouble support for directories
     #2071 zstd: Implement core detectiongit

    PR:             278588 (exp-run)
    MFC after:      1 day

 contrib/libarchive/NEWS                            |  2 +
 contrib/libarchive/README.md                       |  2 +-
 contrib/libarchive/cat/cmdline.c                   | 16 +++--
 contrib/libarchive/cpio/cmdline.c                  | 16 +++--
 contrib/libarchive/libarchive/archive.h            |  6 +-
 contrib/libarchive/libarchive/archive_entry.h      |  2 +-
 contrib/libarchive/libarchive/archive_entry_acl.3  |  2 +-
 contrib/libarchive/libarchive/archive_read_disk.3  |  4 +-
 .../libarchive/archive_read_support_format_7zip.c  |  2 +
 .../libarchive/archive_read_support_format_all.c   |  2 +-
 .../libarchive/archive_read_support_format_ar.c    |  4 +-
 .../libarchive/archive_read_support_format_lha.c   |  4 +-
 .../libarchive/archive_read_support_format_mtree.c |  8 +--
 .../libarchive/archive_read_support_format_rar.c   | 30 +++++++-
 .../libarchive/archive_read_support_format_warc.c  | 10 ++-
 .../libarchive/archive_read_support_format_xar.c   |  9 +++
 .../libarchive/archive_read_support_format_zip.c   | 15 +++-
 contrib/libarchive/libarchive/archive_util.c       |  3 +-
 .../libarchive/archive_write_add_filter_zstd.c     | 23 +++++-
 .../libarchive/archive_write_disk_posix.c          |  3 +-
 .../libarchive/libarchive/archive_write_private.h  |  2 +-
 .../libarchive/archive_write_set_format_gnutar.c   |  2 +-
 .../libarchive/archive_write_set_passphrase.c      | 35 ++++-----
 .../libarchive/libarchive/libarchive_internals.3   |  2 +-
 .../test/test_read_format_xar_doublelink.c (new)   | 55 ++++++++++++++
 .../test_read_format_xar_doublelink.xar.uu (new)   | 12 ++++
 .../libarchive/test/test_write_disk_appledouble.c  | 84 ++++++++++++++++++=
++++
 .../test_write_disk_appledouble_zip.zip.uu (new)   | 27 +++++++
 contrib/libarchive/libarchive_fe/passphrase.c      |  4 +-
 contrib/libarchive/tar/bsdtar.1                    | 15 ++--
 contrib/libarchive/tar/bsdtar.c                    | 63 ++++++++--------
 contrib/libarchive/tar/cmdline.c                   | 16 +++--
 contrib/libarchive/unzip/cmdline.c                 | 18 +++--
 contrib/libarchive/unzip/test/test_I.c             | 13 ++++
 lib/libarchive/tests/Makefile                      |  3 +
 35 files changed, 404 insertions(+), 110 deletions(-)

--=20
You are receiving this mail because:
You are on the CC list for the bug.=