FortiClient Vulnerability

RedHat libarchive CVE-2022-26280 Out of Bounds Read Vulnerability

Description

The libarchive programming library can create and read several differentstreaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images.Libarchive is used notably in the bsdtar utility, scripting language bindingssuch as python-libarchive, and several popular desktop file managers. Security Fix(es): libarchive: an out-of-bounds read via the component zipx_lzma_alone_init (CVE-2022-26280) For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVE page(s)listed in the References section. SolutionFor details on how to apply this update, which includes the changes described inthis advisory, refer to:https://access.redhat.com/articles/11258