[CLSA-2026:1774375084] libarchive: Fix of CVE-2026-4111
Type:
security
Severity:
Important
Release date:
2026-03-24 17:58:08 UTC
Description:
- CVE-2026-4111: Fix infinite loop in RAR5 decompression caused by block_length exceeding half the window size, leading to CPU-consuming denial-of-service
Updated packages:
  • bsdcat-3.5.3-6.el9_2.tuxcare.els2.x86_64.rpm
    sha:b20f2d264e3dd7a950de711c4fca2fc07c7a3d8d18da8026cf8c289f7ff0bdb9
  • bsdcpio-3.5.3-6.el9_2.tuxcare.els2.x86_64.rpm
    sha:abf72f3da6a3a3ee96974c837f7fb2f9ee490d930716b74987485ffc5c900e9c
  • bsdtar-3.5.3-6.el9_2.tuxcare.els2.x86_64.rpm
    sha:eb93dc01782f821172d8943c01b4dce04b70c000cdbf67b53387377f1a61ae67
  • libarchive-3.5.3-6.el9_2.tuxcare.els2.i686.rpm
    sha:a980ed347ef551d899090d34e3522802cb8f6470639c1a73a519bdf3f2663323
  • libarchive-3.5.3-6.el9_2.tuxcare.els2.x86_64.rpm
    sha:11c92ff50304f7a998acf6b58eaec44cbdc2f655377da6d90b9045a3ef4ced11
  • libarchive-devel-3.5.3-6.el9_2.tuxcare.els2.i686.rpm
    sha:c37acd883b4cd8b8ff4601617dba1be5c0d24f0d66e300b4407813acff5e6c85
  • libarchive-devel-3.5.3-6.el9_2.tuxcare.els2.x86_64.rpm
    sha:146f39ceb9224739d7ecc21f3995f7b0c23997e5ec26098457035bde3baa70fb
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.