====================================================================

                                 CERT-Renater

                     Note d'Information No. 2016/VULN264
_____________________________________________________________________

DATE                : 23/06/2016

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Libarchive version prior to 3.2.1.

=====================================================================
https://groups.google.com/forum/#!topic/libarchive-discuss/sui01WaM3ic
____________________________________________________________________

Libarchive 3.2.1 is now available at

    https://libarchive.org/downloads/libarchive-3.2.1.tar.gz

Libarchive 3.2.1 is a security follow-up to the recent libarchive
3.2.0 release.

This release fixes several critical bugs, including some with
security implications.  All users of libarchive are strongly
encouraged to upgrade as soon as possible.

Special thanks to two groups that spent significant effort
evaluating libarchive and provided detailed reports of the
problems they found:

* The Open Source and Threat Intelligence project at Cisco.

* Hanno Böck and the AFL project


Further details about the issues fixed in this release can
be found in the Github.com issues tracker:

 
https://github.com/libarchive/libarchive/issues?utf8=✓&q=milestone%3A3.2.1

==========================================================
Serveur de référence du CERT-Renater
https://services.renater.fr/ssi/
==========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44           +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41           +
+ 75013 Paris           | email: cert@support.renater.fr +
==========================================================