Leo Famulari <l...@famulari.name> skribis: > There is a buffer overflow in libarchive, CVE-2016-1541 [0]. According > to MITRE description, it "allows remote attackers to execute arbitrary > code via crafted entry-size values in a ZIP archive." > > Yikes! > > This patch applies the upstream patch [1]. > > Requesting your review, since soooo many packages depend on libarchive.
LGTM. > I will follow this commit with an "ungrafting" commit on core-updates. Cool! Thank you! Ludo’.
