libarchive13-32bit-3.4.2-150200.4.15.1<>,ixc|p9|[ cTɐ tk6I8`4JxwN~e^]̋JmWz~2;=!35݊O a@+Q +XK׻qtk(V'rx:1ݨc&eT>@$eB"svPd0 ^[ߑr6X?Y͊xU^DU3|e.MMs瘱a}S'qQŧGkK=R:JK/k˗vCq6-9>>-?-d ) j         " = C J \ `  b  d  h          (# ##(89@:s>*G*H*I*X*Y*\*]*^*b+c+d,Fe,Kf,Nl,Pu,dv,hw,x-y-----Clibarchive13-32bit3.4.2150200.4.15.1Library to work with several different streaming archive formatsLibarchive is a programming library that can create and read several different streaming archive formats, including most popular tar variants and several cpio formats. It can also write shar archives and read ISO-9660 CDROM images. The bsdtar program is an implementation of tar(1) that is built on top of libarchive. It started as a test harness, but has grown and is now the standard system tar for FreeBSD 5 and 6. The libarchive library offers a number of features that make it both very flexible and very powerful. - Automatic format detection: libarchive can automatically determine both the compression and the archive format, regardless of the data source. Most tar implementations do not automatically detect the compression format, few implementation that can correctly do this when reading from stdin or a socket. (The tar program included with Gunnar Ritter's heirloom collection also does full automatic format detection.) - Writes POSIX formats: libarchive writes POSIX-standard formats, including "ustar," "pax interchange format," and the POSIX "cpio" format. - Supports pax interchange format: Pax interchange format (which, despite the name, is really an extended tar format) eliminates almost all limitations of historic tar formats and provides a standard method for incorporating vendor-specific extensions. libarchive exploits this extension mechanism to support ACLs and file flags, for example. (Joerg Schilling's star archiver is another open-source tar program that supports pax interchange format.) - Reads popular formats: libarchive can read GNU tar, ustar, pax interchange format, cpio, and older tar variants. The internal architecture is easily extensible. The only requirement for support is that it be possible to read the format without seeking in the file. (For example, a format that includes a compressed size field before the data cannot be correctly written without seeking.) - High-Level API: the libarchive API makes it fairly simple to build an archive from a list of filenames or to extract the entries from an archive. However, the API also provides extreme flexibility with regards to data sources. For example, there are generic hooks that allow you to write an archive to a socket or read data from an archive entry into a memory buffer. - Extensible. The internal design uses generic interfaces for compression, archive format detection and decoding, and archive data I/O. It should be very easy to add new formats, new compression methods, or new ways of reading/writing archives.c|sheep08 hSUSE Linux Enterprise 15SUSE LLC BSD-2-Clausehttps://www.suse.com/System/Librarieshttp://www.libarchive.org/linuxx86_64/sbin/ldconfig hc|006dd3c783f649d39cccdd66c59722dea733775683ea79f983e54d839319729drootrootlibarchive-3.4.2-150200.4.15.1.src.rpmlibarchive.so.13libarchive13-32bitlibarchive13-32bit(x86-32)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    /bin/shlibacl.so.1libacl.so.1(ACL_1.0)libbz2.so.1libc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1)libc.so.6(GLIBC_2.1.2)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.15)libc.so.6(GLIBC_2.16)libc.so.6(GLIBC_2.2)libc.so.6(GLIBC_2.3)libc.so.6(GLIBC_2.3.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libc.so.6(GLIBC_2.6)libc.so.6(GLIBC_2.7)libcrypto.so.1.1libcrypto.so.1.1(OPENSSL_1_1_0)liblz4.so.1liblzma.so.5liblzma.so.5(XZ_5.0)libxml2.so.2libxml2.so.2(LIBXML2_2.4.30)libxml2.so.2(LIBXML2_2.5.0)libxml2.so.2(LIBXML2_2.5.2)libxml2.so.2(LIBXML2_2.6.0)libxml2.so.2(LIBXML2_2.6.5)libz.so.1libzstd.so.1rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.1c|cRc@bzSb/.@^K^C^ ^ ]]Y=] u@]:\Yz\-@[[Y4X9@XAb@XW\@WgWbW0{W,@UN@UUt@TE@Ta@danilo.spinella@suse.comdanilo.spinella@suse.comdanilo.spinella@suse.comdanilo.spinella@suse.comdanilo.spinella@suse.comidonmez@suse.comidonmez@suse.comidonmez@suse.comidonmez@suse.comadrian@suse.deidonmez@suse.comidonmez@suse.comidonmez@suse.comadrian@suse.dekbabioch@suse.dejengelh@inai.deadrian@suse.deadrian@suse.deadrian@suse.deadrian@suse.comadrian@suse.comdmueller@suse.comadrian@suse.deadrian@suse.deadrian@suse.denormand@linux.vnet.ibm.comastieger@suse.comastieger@suse.comastieger@suse.comadrian@suse.comjsegitz@novell.com- Fix CVE-2022-36227, Handle a calloc returning NULL (CVE-2022-36227, bsc#1205629) * CVE-2022-36227.patch- Fix CVE-2021-31566, modifies file flags of symlink target (CVE-2021-31566, bsc#1192426.patch) CVE-2021-31566.patch - Fix bsc#1192427, processing fixup entries may follow symbolic links bsc1192427.patch- Fix CVE-2021-23177, extracting a symlink with ACLs modifies ACLs of target (CVE-2021-23177, bsc#1192425) * CVE-2021-23177.patch- Fix CVE-2022-26280 out-of-bounds read via the component zipx_lzma_alone_init (CVE-2022-26280, bsc#1197634) * fix-CVE-2022-26280.patch- Fix CVE-2021-36976 use-after-free in copy_string (CVE-2021-36976, bsc#1188572) * fix-CVE-2021-36976.patch - The following issues have already been fixed in this package but weren't previously mentioned in the changes file: CVE-2017-5601, bsc#1022528, bsc#1189528- Switch back to cmake build now that cmake-mini exists, this will no longer create a build-cycle.- Update to version 3.4.2 New features: * support for atomic file extraction (bsdtar -x --safe-writes) (#1289) * support for mbed TLS (PolarSSL) (#1301) Important bugfixes: * security fixes in RAR5 reader (#1280 #1326) * compression buffer fix in XAR writer (#1317) * fix uname and gname longer than 32 characters in PAX writer (#1319) * fix segfault when archiving hard links in ISO9660 and XAR writers (#1325) * fix support for extracting 7z archive entries with Delta filter (#987)- Revert back to autoconf, cmake introduces a cycle. Leave cmake patches in since they are basically correct and might be useful in the future.- Update to version 3.4.1 New features: * Unicode filename support for reading lha/lzh archives * New pax write option "xattrhdr" Important bugfixes: * security fixes in wide string processing (#1276 #1298) * security fixes in RAR5 reader (#1212 #1217 #1296) CVE-2019-19221 * security fixes and optimizations to write filter logic (#351) * security fix related to use of readlink(2) (1dae5a5) * sparse file handling fixes (#1218 #1260) - Drop CVE-2019-19221.patch and fix-zstd-test.patch, fixed upstream- fix bsc#1157569 CVE-2019-19221.patch out-of-bounds read in libarchive- Switch to cmake build - Add lib-suffix.patch to honor LIB_SUFFIX - Add fix-zstd-test.patch to fix zstd test - Add fix-soversion.patch to fix the soversion to 13 as autotools- Add lz4 and zstd support - Add BuildRequires on liblz4-devel and libzstd-devel- Update to version 3.4.0 * Support for file and directory symlinks on Windows * Read support for RAR 5.0 archives * Read support for ZIPX archives with xz, lzma, ppmd8 and bzip2 compression * Support for non-recursive list and extract * New tar option: --exclude-vcs * Improved file attribute support on Linux and file flags support on FreeBSD * Fix reading Android APK archives (#1055 ) * Fix problems related to unreadable directories (#1167) * A two-digit number of OSS-Fuzz issues was resolved in this release including CVE-2019-18408 - Add libarchive.keyring and validate the tarball signature - Drop all security patches, fixed upstream: * CVE-2018-1000877.patch * CVE-2018-1000878.patch * CVE-2018-1000879.patch * CVE-2018-1000880.patch * CVE-2019-1000019.patch * CVE-2019-1000020.patch- Added patches: * CVE-2019-1000019.patch Fixes 7zip crash (boo#1124341) * CVE-2019-1000020.patch ISO9660 infinite loop fixed (boo#1124342)- Added patches: * CVE-2018-1000877.patch, which fixes a double free vulnerability in RAR decoder (CVE-2018-1000877 bsc#1120653) * CVE-2018-1000878.patch, which fixes a Use-After-Free vulnerability in RAR decoder (CVE-2018-1000878 bsc#1120654) * CVE-2018-1000879.patch, which fixes a NULL Pointer Dereference vulnerability in ACL parser (CVE-2018-1000879 bsc#1120656) * CVE-2018-1000880.patch, which fixes an improper input validation vulnerability in WARC parser (CVE-2018-1000880 bsc#1120659) - Make use of %license macro - Applied spec-cleaner- Fix RPM groups. Remove idempotent %if..%endif guards. Diversify summaries. Set CFLAGS instead of re-defining optflags with itself.- update to version 3.3.3 * Avoid super-linear slowdown on malformed mtree files * Many fixes for building with Visual Studio * NO_OVERWRITE doesn't change existing directory attributes * New support for Zstandard read and write filters - Fixes CVE-2017-14501, CVE-2017-14502, CVE-2017-14503 - fix-CVE-2017-14166.patch is obsolete- update to version 3.3.2 * NFSv4 ACL support for Linux (librichacl) - fix-CVE-2017-14166.patch (boo#1057514)- update to version 3.3.1 * Security & Feature release Details are not documented from upstream yet fix-extract-over-links.patch and libarchive-openssl.patch obsoleted- fix extracting over symlinks: fix-extract-over-links.patch the problem is solved upstream different, but git master is too different atm.- update to version 3.2.2 Unspecified security fixes, but at least: * CVE-2016-8687 * CVE-2016-8689 * CVE-2016-8688 * CVE-2016-5844 * CVE-2016-6250 * CVE-2016-5418 - obsoletes fix-build.patch- make bsdtar require a matching libarchive version to avoid missing symbol errors- update to version 3.2.1 Fixes a number of security issues: CVE-2015-8934, CVE-2015-8933, CVE-2015-8917, CVE-2016-4301, CVE-2016-4300 - and fixing the build (fix-build.patch)- limit size of symlinks in cpio archives (CVE-2016-4809, boo#984990) CVE-2016-4809.patch- 4GB _constraints for ppc64le only, it would break other archs - update to version 3.2.0 * Fixes CVE-2016-1541 * Fixes CVE-2015-8928 * changes are only documented in git history * updated openssl patch * new bsdcat utility - removed obsolete patches for: * CVE-2013-0211.patch * directory-traversal-fix.patch * libarchive-xattr.patch- add _constraints memory 4096MB to avoid ppc64le build failure- build static lib on RHEL 7- RHEL/CentOS build fix, skipping autoreconf- add CVE for previous change- fix a directory traversal in cpio tool (bnc#920870) directory-traversal-fix.patch CVE-2015-2304- Added CVE-2013-0211.patch to fix CVE-2013-0211 (bnc#800024)/bin/sh3.4.2-150200.4.15.13.4.2-150200.4.15.1libarchive.so.13/usr/lib/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:26954/SUSE_SLE-15-SP2_Update/41ee44b3d90825852692ae2bb4bbd754-libarchive.SUSE_SLE-15-SP2_Updatedrpmxz5x86_64-suse-linuxELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=8d36524296d9fe168dbe0cbc0b9cb287f05adf99, strippedPRRRRRRRRRR R RRRR RRR R RRRRRRRRRRRutf-80d6d9f21567fb9b4d6b7ae06dc2e5300d5bfaaf62a66adbcb234294869849652? 7zXZ !t/Hu7P]"k%ֿ۫[(>DTUK9-qHhˇJ4mQq_yDZaH¡O %d۸R'2ܐ032dE. e@y? pQAyvk 47Ḋ#h}y.\w{W1IbRpέzmP%Zj$.b`IjJ-+h;d\Ro3Ӈ&Qq94 GSWCh#K8 C+45vҖ~a^i. [wy;fk)dA4A>\ėNz/AWUg^4~W%D{ 9n%܆u6^6D g[[s/k \=0\P,8<"N>"^HCj>NL7bݽU45֌^/嶯O:-'XoؤE̦w8Z"3 sR58M(4jV{ qYmNt'7GS2c@rH gw:tTMV Bg~c9MXc[wk/^pZ#d1|ڑ8}cs ù4ϊw`m`&U/64WRQBaފhgKz@y=4S#'vU)wρ?iS0d8o&!,Ք&+y4 Q)Pvvy Cr ?_dIB Ǧ_1G^ RBg$t'fJC^_ՕcYvK$$Q2X=d7Y6c8K0||׃0zx1.(ɒ8 ҄߬ 'Ղ3֌*+V~\BL`^1T{qgfάB<]#}9P[)%ڰ>z{[~wB Rpr2YVyi7t?RTtG6Wz+_SkzPp%:C<@*,d/Xq0tKiRto[Ŗ)ŀp}]g(AP\ 6:;j&}lfbVW7Y51)S!4o )AQeCvLZ#%" OaIN=!]HCa__ b"eEQ(e9 - zȯZ[fqa?m}+]ˣ‹-,D7#ܠ(I.jTbN$~3_G^J5E<7v2j78uד8юi5ɍsv(/U9*qqQ5&_e)IێxRԴ)?@Y|8DzeI}O$cHeJک!N3U S^1ZҤϪd]ƍa3dEjmM.)-6<5ՒI4 tU}YfNK2b6y #@ ,$kʜlO5u:16u1r~x~d_8@!,ROm'}US ] ųy Gt~m*+ DҨ]36Pr#a*5} :M =fy |!k4լ_uQ5,LW K΁E=2#t+[m/NaK+ uM"WU7S3w̡@|b{w=ona|XG[_z`1L20s*u:Ys#Sve)p"oSA_}Hӎ; \2;b NTߞ  ߠD$\` ^LR+er~2o>x&RTh,v51ǻ69)_Te:mHG00ȏ7S_'=\*+*yZm?v,ҥ=P2aQjϸdorv4~z =$R*x,+milefM FGG3}hBӋf,W(SڒB4yrf^ kб73DD/\XteROtD02t_J?YU( ^Kqd5@ JE Si $Co&f#VTw)oP  \MCPM7r~3 |zy&}$W-UY).8\IvIKZcB;Ia.9'f?P },uB=aR )rrKY0 4{;s8 / FILy/Y@VUL$laE5 2alD%q$>L*/|6UsNn$7 `ky9Z)alۿ%fT۷i'[n P爸n`ׁ6. L)'+QR~GX*Z_(Iԁ '`/U.Jk)Vbs dd^l mknBT~,76J]1 YĻk5 oalc/})uw P&f[8xp-]?fމRbRRзޡ=N&|(dX6tyft[~ P{ޗ&NHи8/bY4YΤ|ϕ7?w~e{˔ +Z*_WnykቜZm~Ȯ24Mv_&h}|5|`T CWD-9fG H1'#uZKp%:XC`_Dq8ppĐvqE*p@/O4Lk5!~ע c-p:l\ 3 "! '&(>[vষ)Hp,+5V *pSU"x>ehd=Ol'ٿ(tc~>Ke\[SHf1Y{r*X,A]:d ֮9Vx;AQ;_k[iPg# (\W^0Ș(6@Fȿ9Lp 8w N8],Ҙx}EevN^ m;}W9 Y7y0ǖsGqd1<-2<xTL⟲2S$4H~Pmg hK96p}%>Yeh!+$J~;SRXcC S"ٸ ݪ@po[ QKGaD|`(T]Xc3Vb[< zڇXMh8ɥCv5m܍wI= 2䲌bf "AieuZ{}>>UldU)>YK}:gOfYdx{GӕxX޼{1E:awpdRGW,sEAdy׬%TM%N"{nݽ]B;.a;.Vehڙ0XD} }ZTy9f&~.9K8  yȦx3lP-Ab)ävњ|x&G> J'nķR-.mwVȴ9;tUaBGˍI|b/pKq(_aoEQ 2 ?b Hnuc]GsИh&:,e9U^"-mx]D; )֙E_v#r%"TϒW@U2Ѝ}VTFÔwAKypBne3i}krW9󱰀{Oa2D۟07([2zy LB=>I/ U,*,!`7+x^E f0L3|Լ>?_9j @\9۶bBd:_JtL2̸![;` 9f!yz,_'v <. 磟XxV!1ޕbGO63-0 u\aiwm_I¿:j߯S57y \^D(Xjvadz`GQI\;@5ZmR^`/90OȿbY0c]rr!H;Y^D}sT.[젹O?s>HJ;,CoH[U9ь'.6t/`^2ETh+3w{ّ1ۣx0,.S~ʮBEΉD7ō*pXnÇ p`;-(%w!i\(5v]-:2"[cbƣ-qo2gIMo4IPao0NLjk [k&JEk֒^y Pcdq_&@a+tc&1!l0K]i)dCd߆K5ezO,ڤfiNe]IɛB7Wk쎅r1S3!l[r!QV?ǰF Ħ1 GCL w5<^ƾf#`vw~ Uŧ<;_n~pM>5.Q@zBMK lݢ'(5~Z+#gL>(yk?|^O *ǐybY5a:}{>loqHiPp0QJvc b '455Rt]ذB9m}I &),s;+1RLΈ ZxKA裔ΆusjwڈfZQ4*O[@g׳{[Bc!šabz$wr6"i ?7C-7cqk ;QHUlN#0BIA@7Q fuGz Hz7&m$YM4XL`SAAs;p w.!޶|*A[xҼ0ZVTec] _T *8 9gOd@iIPֆyXޓr,ǛZ|~'eKjP%?= &v1c {3!]UfW"pG$l <clQ[(#mѐ'6;=mokϴA׆8̓*0Qp%Ű@3_@.S8f+sr <xTEwV 1Z(5qkw~,=$KO;[~8'Imu$$8v]}r){R3=J7*Fhr,_He@Pub֐I}G'T72kvX2 z؊WTo٥XMx#gmA:0Es`{A%Hby ˖7_ |]gLQF[(' 8;_s;GgI5ٰ\ ȚX#Ծ\,0)!e"[uW-a+0+/֠$#f,Ð:qtihM >$__OƑ5|ZN&̴@`Y E)s+e|!~ `Ȃ|PـCpJU9ƻ8Es_*1DS&G!b=|zhQ ͱUجK|D k=|f9hǸ'~; RWƅ\_; 1Vn rEMpߛhP{4#I[o[&mx*}QepеqY䫉sfx+` A=LͿo"R{-G[W^ː~y&nU3zv䣨}B )PHʄEy֘}oPm* øCerr ]PIU= Y{szc|G +.ox ʼnmkB.f ]! NxcPd+wZ58Q(qZxUE~ls&:,[ EFI!)͵3#F@᧵/:ME mpyY؀4=6B *ŠUcXWy՘ Oh bJ"B]uʗxN vY zN"g N[CK[ߞm5jW|$zi#DI~&gnVZMGQLh1j>׬q\_݀WVʧtIX69ZA4M(VO`9(eDƾ)u+gGƮqys ZPl3ףM]Brjwdo6+,etrv6ۭVK, 5<}wd.<R慠n`>a8CwF(Tw@E3e7 E(Tw>h<-J};ވy .wP\9Y4k`LۼWjXzcywfLA yja] c)=a/N5"<|lr8lРÉ2Z`d; \<ѭ2bwaL*= ~>"%KT7DY ގOr|>[Pn:TH& ${<{Ȥ OK~. w0@矼]prsE`{bه%&7=ȷ)=|]\hfe qvOkBQT{ V $*xK(5 QQ"ΑNΩ2vc^yDO&+J(CЭJՌ%Qy܊}Yk>kGZ(,dNJ8Q};|UB9{i"&bQS-MR00zZ>4([۬5HFpljrzy.&Ž( x!|>A=T#ЗqQoInq "QTGv%>/ / bw@~ [J9gWjHTqE$n=N2R yoU:ұ.mb0D iW;OeyE{ |f=.3[8_Kvgꋉ?+q$!Y\tǪԸzo0tJ:ωHTo { ,BWDbIN'.8h!i&:!9X$kHU p^o=.ͅ?@\/46qwjƷk f8dZCp/>wo6άG1F0c6JOz-ۀT#[Ji@ 9!}<ɫ,w{H6-KӿB.nyq{xR umP|Yu!6x[fݏG8ZZ"`F|eZSDXUEm:T+".жg7Is 1q `\4ٱb ̘ R-^ 7CPI#5KS⪔ b6]6=j>nDtzqly<:la+ӵ詠+W(IH>~[xɚm#bp9KJ&phή{ [ S X3:"މZsҌSk?K^0owLavU䭓H.#!~@C29^m{mm$oQ2}Ou;<3c~ k6N^mVD\cdhf=\w Gy,Pqm2#t~ +zngrLaK 5ab 6 Y`$sc2;6bzahfֵYuxn:,)h'DU]D [ Z'N܁CP$*.TF qxG?dw *yWS?L8sþ. x}ȹUh*]/}9F-8Wp>5%zU,sׄxx{_Py|TP ԑ&K1re#cnI}"%FYV9B:=0\ -{D,cMИwgW/XRtOedo]+[d\oSxZ "(㫤މxy'k2Ϋ$~"zt PM5SUn$R:hi X~G]'˞7ڙoi3i 6 V7gI:<5MO+1ΈUl}RVj vIjUݜTX2T,OohUȍ0ʿ۶9wW6-W<Ѣg$ߥ+92/\0o}rz#!NvTצyϞ(4S",y2]a"B4w;{_Wס`j58}G,>aqҎ刴sv=( Y66wwp hrˢ²h&`$ _ts7Ez&|sU.6 nID#ٕԹ5vHzMj)XB/f3 ,3N7gLjruOyGБ\`agS| Vċsz!7iA#s j=SyG#dVX-u*DjOTƯa Un_h"mxU8hq2k9ª#*S?xA+Զ;$KJ-R2~x}SNlVdFqd٠e¨zE3# $E1s* +O ̧~a%BN6\vdݞ/A导KpįdM"q儱[}amN|F+|6 Hn7fV` (JJiFKPrQhK4@v0vHI?f' IHe;>"oDD  1zw#fZ OſzΥ$ 'zfc& h+~shK쒦6,P(}?Ę*.3/7N/F\