en Copyright 2015 Java http://kernelsources.org:8080/source/history/freebsd/contrib/libarchive/cat/test/test_empty_zstd.c#bd66c1b43e33540205dbc1187c2f2a15c58b57ba libarchive: merge from vendor branchLibarchive 3.7.7Security fixes: #2158 rpm: calculate huge header sizes correctly #2160 util: fix out of boundary access in mktemp functions #2168 uu: stop processing if lines are too long #2174 lzop: prevent integer overflow #2172 rar4: protect copy_from_lzss_window_to_unp() (CVE-2024-20696) #2175 unzip: unify EOF handling #2179 rar4: fix out of boundary access with large files #2203 rar4: fix OOB access with unicode filenames #2210 rar4: add boundary checks to rgb filter #2248 rar4: fix OOB in delta filter #2249 rar4: fix OOB in audio filter #2256 fix multiple vulnerabilities identified by SAST #2258 cpio: ignore out-of-range gid/uid/size/ino and harden AFIO parsing #2265 rar5: clear 'data ready' cache on window buffer reallocs #2269 rar4: fix CVE-2024-26256 (CVE-2024-26256) #2330 iso: be more cautious about parsing ISO-9660 timestamps #2343 tar: clean up linkpath between entries #2364 tar: don't crash on truncated tar archives #2366 gzip: prevent a hang when processing a malformed gzip inside a gzip #2377 tar: fix two leaks in tar header parsingImportant bugfixes: #2096 rar5: report encrypted entries #2150 xar: fix another infinite loop and expat error handling #2173 shar: check strdup return value #2161 lha: fix integer truncation on 32-bit systems #2338 tar: fix memory leaks when processing symlinks or parsing pax headers #2245 7zip: fix issue when skipping first file in 7zip archive that is a multiple of 65536 bytes #2252 7-zip: read/write symlink paths as UTF-8 #2259 rar5: don't try to read rediculously long names #2290 ar: fix archive entries having no type #2360 tar: fix truncation of entry pathnames in specific archivesCVE: CVE-2024-20696, CVE-2024-26256PR: 282047 (exp-run)MFC after: 1 week List of files: /freebsd/contrib/libarchive/cat/test/test_empty_zstd.c Sun, 20 Oct 2024 10:22:09 +0200 Martin Matuska <mm@FreeBSD.org> http://kernelsources.org:8080/source/history/freebsd/contrib/libarchive/cat/test/test_empty_zstd.c#c2c014f24c10f90d85126ac5fbd4d8524de32b1c Merge ^/head r323559 through r325504. List of files: /freebsd/contrib/libarchive/cat/test/test_empty_zstd.c Tue, 07 Nov 2017 09:39:14 +0100 Hans Petter Selasky <hselasky@FreeBSD.org> http://kernelsources.org:8080/source/history/freebsd/contrib/libarchive/cat/test/test_empty_zstd.c#d5db4328adee4ad2d5c72d2148d9b086868f7ec1 MFhead@r324148 List of files: /freebsd/contrib/libarchive/cat/test/test_empty_zstd.c Sun, 01 Oct 2017 04:28:16 +0200 Enji Cooper <ngie@FreeBSD.org> http://kernelsources.org:8080/source/history/freebsd/contrib/libarchive/cat/test/test_empty_zstd.c#5c831a5bd61576cacb48b39f8eeb47b92707a355 MFV r324145,324147:Sync libarchive with vendor.Relevant vendor changes: PR #905: Support for Zstandard read and write filters PR #922: Avoid overflow when reading corrupt cpio archive Issue #935: heap-based buffer overflow in xml_data (CVE-2017-14166) OSS-Fuzz 2936: Place a limit on the mtree line length OSS-Fuzz 2394: Ensure that the ZIP AES extension header is large enough OSS-Fuzz 573: Read off-by-one error in RAR archives (CVE-2017-14502)MFC after: 1 weekSecurity: CVE-2017-14166, CVE-2017-14502 List of files: /freebsd/contrib/libarchive/cat/test/test_empty_zstd.c Sun, 01 Oct 2017 02:40:23 +0200 Martin Matuska <mm@FreeBSD.org>