Bug 1192426 (CVE-2021-31566) - VUL-0: CVE-2021-31566: libarchive: modifies file flags of symlink target
Summary: VUL-0: CVE-2021-31566: libarchive: modifies file flags of symlink target
Status: RESOLVED FIXED
Alias: CVE-2021-31566
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/314413/
Whiteboard: CVSSv3.1:SUSE:CVE-2021-31566:4.4:(AV:...
Keywords:
Depends on:
Blocks:
 
Reported: 2021-11-07 19:31 UTC by Andreas Stieger
Modified: 2024-05-15 13:28 UTC (History)
7 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Stieger 2021-11-07 19:31:14 UTC 
libarchive before 3.5.2, when opening a file descriptor to set file flags on linux, would follow symbolic links. In case an archive contains a directory entry followed by a symlink entry with the same path, libarchive would modify file flags of the symlink target.

References:
https://github.com/libarchive/libarchive/commit/e2ad1a2c3064fa9eba6274b3641c4c1beed25c0b
Comment 1 Andreas Stieger 2021-11-07 19:33:13 UTC 
https://build.opensuse.org/request/show/930015
Comment 2 Adrian Schröter 2021-11-08 08:16:59 UTC 
thanks! maintenance submission is in 930073 in OBS.
Comment 7 Swamp Workflow Management 2021-11-17 14:20:24 UTC 
SUSE-SU-2021:3722-1: An update that solves one vulnerability and has three fixes is now available.

Category: security (moderate)
Bug References: 1157569,1192425,1192426,1192427
CVE References: CVE-2019-19221
JIRA References: 
Sources used:
SUSE Linux Enterprise Software Development Kit 12-SP5 (src):    libarchive-3.3.3-32.5.1
SUSE Linux Enterprise Server 12-SP5 (src):    libarchive-3.3.3-32.5.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 17 Swamp Workflow Management 2022-11-10 17:26:15 UTC 
SUSE-SU-2022:3936-1: An update that solves one vulnerability and has one errata is now available.

Category: security (moderate)
Bug References: 1192426,1192427
CVE References: CVE-2021-31566
JIRA References: 
Sources used:
openSUSE Leap 15.4 (src):    libarchive-3.5.1-150400.3.9.1
SUSE Linux Enterprise Module for Development Tools 15-SP4 (src):    libarchive-3.5.1-150400.3.9.1
SUSE Linux Enterprise Module for Basesystem 15-SP4 (src):    libarchive-3.5.1-150400.3.9.1
SUSE Linux Enterprise Micro 5.3 (src):    libarchive-3.5.1-150400.3.9.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 18 Swamp Workflow Management 2022-11-10 17:27:50 UTC 
SUSE-SU-2022:3935-1: An update that solves one vulnerability and has one errata is now available.

Category: security (moderate)
Bug References: 1192426,1192427
CVE References: CVE-2021-31566
JIRA References: 
Sources used:
openSUSE Leap 15.3 (src):    libarchive-3.4.2-150200.4.12.1
SUSE Linux Enterprise Module for Development Tools 15-SP3 (src):    libarchive-3.4.2-150200.4.12.1
SUSE Linux Enterprise Module for Basesystem 15-SP3 (src):    libarchive-3.4.2-150200.4.12.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.