Patch libarchive for CVE-2024-48615 [High] (#13287)

(cherry picked from commit 239643c)

Author: jslobodzian

SPECS/libarchive/CVE-2024-48615.patch

@@ -0,0 +1,80 @@
+From 8d57799b49ab165210d34bdc201971e15c013288 Mon Sep 17 00:00:00 2001
+From: kavyasree <kkaitepalli@microsoft.com>
+Date: Mon, 7 Apr 2025 12:04:21 +0530
+Subject: [PATCH] Error handling for each call of __archive_read_ahead
+
+Reference: https://github.com/libarchive/libarchive/commit/565b5aea491671ae33df1ca63697c10d54c00165
+---
+ libarchive/archive_read_support_format_tar.c | 17 +++++++----------
+ 1 file changed, 7 insertions(+), 10 deletions(-)
+
+diff --git a/libarchive/archive_read_support_format_tar.c b/libarchive/archive_read_support_format_tar.c
+index bfdad7f..e654de7 100644
+--- a/libarchive/archive_read_support_format_tar.c
++++ b/libarchive/archive_read_support_format_tar.c
+@@ -625,8 +625,6 @@ archive_read_format_tar_read_data(struct archive_read *a,
+ 		}
+ 
+ 		*buff = __archive_read_ahead(a, 1, &bytes_read);
+-		if (bytes_read < 0)
+-			return (ARCHIVE_FATAL);
+ 		if (*buff == NULL) {
+ 			archive_set_error(&a->archive, ARCHIVE_ERRNO_MISC,
+ 			    "Truncated tar archive");
+@@ -711,13 +709,11 @@ tar_read_header(struct archive_read *a, struct tar *tar,
+ 
+ 		/* Read 512-byte header record */
+ 		h = __archive_read_ahead(a, 512, &bytes);
+-		if (bytes < 0)
+-			return ((int)bytes);
+ 		if (bytes == 0) { /* EOF at a block boundary. */
+ 			/* Some writers do omit the block of nulls. <sigh> */
+ 			return (ARCHIVE_EOF);
+ 		}
+-		if (bytes < 512) {  /* Short block at EOF; this is bad. */
++		if (h == NULL) {  /* Short block at EOF; this is bad. */
+ 			archive_set_error(&a->archive,
+ 			    ARCHIVE_ERRNO_FILE_FORMAT,
+ 			    "Truncated tar archive");
+@@ -1459,6 +1455,9 @@ read_mac_metadata_blob(struct archive_read *a, struct tar *tar,
+ 	 */
+ 	data = __archive_read_ahead(a, msize, NULL);
+ 	if (data == NULL) {
++		archive_set_error(&a->archive, EINVAL,
++ 		    "Truncated archive"
++ 		    " detected while reading macOS metadata");
+ 		*unconsumed = 0;
+ 		return (ARCHIVE_FATAL);
+ 	}
+@@ -2345,9 +2344,7 @@ gnu_sparse_old_read(struct archive_read *a, struct tar *tar,
+ 	do {
+ 		tar_flush_unconsumed(a, unconsumed);
+ 		data = __archive_read_ahead(a, 512, &bytes_read);
+-		if (bytes_read < 0)
+-			return (ARCHIVE_FATAL);
+-		if (bytes_read < 512) {
++		if (data == NULL) {
+ 			archive_set_error(&a->archive, ARCHIVE_ERRNO_FILE_FORMAT,
+ 			    "Truncated tar archive "
+ 			    "detected while reading sparse file data");
+@@ -2755,7 +2752,7 @@ readline(struct archive_read *a, struct tar *tar, const char **start,
+ 	tar_flush_unconsumed(a, unconsumed);
+ 
+ 	t = __archive_read_ahead(a, 1, &bytes_read);
+-	if (bytes_read <= 0)
++	if (bytes_read <= 0 || t == NULL)
+ 		return (ARCHIVE_FATAL);
+ 	s = t;  /* Start of line? */
+ 	p = memchr(t, '\n', bytes_read);
+@@ -2796,7 +2793,7 @@ readline(struct archive_read *a, struct tar *tar, const char **start,
+ 		}
+ 		/* Read some more. */
+ 		t = __archive_read_ahead(a, 1, &bytes_read);
+-		if (bytes_read <= 0)
++		if (bytes_read <= 0 || t == NULL)
+ 			return (ARCHIVE_FATAL);
+ 		s = t;  /* Start of line? */
+ 		p = memchr(t, '\n', bytes_read);
+-- 
+2.34.1
+

SPECS/libarchive/libarchive.spec

@@ -1,7 +1,7 @@
 Summary:        Multi-format archive and compression library
 Name:           libarchive
 Version:        3.6.1
-Release:        5%{?dist}
+Release:        6%{?dist}
 # Certain files have individual licenses. For more details see contents of "COPYING".
 License:        BSD AND Public Domain AND (ASL 2.0 OR CC0 1.0 OR OpenSSL)
 Vendor:         Microsoft Corporation
@@ -15,6 +15,7 @@ Patch2:         CVE-2024-20696.patch
 Patch3:         CVE-2024-48958.patch
 Patch4:         CVE-2024-48957.patch
 Patch5:         CVE-2025-25724.patch
+Patch6:		CVE-2024-48615.patch
 Provides:       bsdtar = %{version}-%{release}
 
 BuildRequires:  xz-libs
@@ -67,6 +68,9 @@ make %{?_smp_mflags} check
 %{_libdir}/pkgconfig/*.pc
 
 %changelog
+* Mon Apr 07 2025 Kavya Sree Kaitepalli <kkaitepalli@microsoft.com> - 3.6.1-6
+- Patch CVE-2024-48615
+
 * Tue Mar 11 2025 Kanishk Bansal <kanbansal@microsoft.com> - 3.6.1-5
 - Patch CVE-2025-25724
 

toolkit/resources/manifests/package/pkggen_core_aarch64.txt

@@ -173,8 +173,8 @@ openssl-static-1.1.1k-36.cm2.aarch64.rpm
 libcap-2.60-4.cm2.aarch64.rpm
 libcap-devel-2.60-4.cm2.aarch64.rpm
 debugedit-5.0-2.cm2.aarch64.rpm
-libarchive-3.6.1-5.cm2.aarch64.rpm
-libarchive-devel-3.6.1-5.cm2.aarch64.rpm
+libarchive-3.6.1-6.cm2.aarch64.rpm
+libarchive-devel-3.6.1-6.cm2.aarch64.rpm
 rpm-4.18.0-4.cm2.aarch64.rpm
 rpm-build-4.18.0-4.cm2.aarch64.rpm
 rpm-build-libs-4.18.0-4.cm2.aarch64.rpm

toolkit/resources/manifests/package/pkggen_core_x86_64.txt

@@ -173,8 +173,8 @@ openssl-static-1.1.1k-36.cm2.x86_64.rpm
 libcap-2.60-4.cm2.x86_64.rpm
 libcap-devel-2.60-4.cm2.x86_64.rpm
 debugedit-5.0-2.cm2.x86_64.rpm
-libarchive-3.6.1-5.cm2.x86_64.rpm
-libarchive-devel-3.6.1-5.cm2.x86_64.rpm
+libarchive-3.6.1-6.cm2.x86_64.rpm
+libarchive-devel-3.6.1-6.cm2.x86_64.rpm
 rpm-4.18.0-4.cm2.x86_64.rpm
 rpm-build-4.18.0-4.cm2.x86_64.rpm
 rpm-build-libs-4.18.0-4.cm2.x86_64.rpm

toolkit/resources/manifests/package/toolchain_aarch64.txt

@@ -144,9 +144,9 @@ krb5-1.19.4-3.cm2.aarch64.rpm
 krb5-debuginfo-1.19.4-3.cm2.aarch64.rpm
 krb5-devel-1.19.4-3.cm2.aarch64.rpm
 krb5-lang-1.19.4-3.cm2.aarch64.rpm
-libarchive-3.6.1-5.cm2.aarch64.rpm
-libarchive-debuginfo-3.6.1-5.cm2.aarch64.rpm
-libarchive-devel-3.6.1-5.cm2.aarch64.rpm
+libarchive-3.6.1-6.cm2.aarch64.rpm
+libarchive-debuginfo-3.6.1-6.cm2.aarch64.rpm
+libarchive-devel-3.6.1-6.cm2.aarch64.rpm
 libassuan-2.5.5-2.cm2.aarch64.rpm
 libassuan-debuginfo-2.5.5-2.cm2.aarch64.rpm
 libassuan-devel-2.5.5-2.cm2.aarch64.rpm

toolkit/resources/manifests/package/toolchain_x86_64.txt

@@ -150,9 +150,9 @@ krb5-1.19.4-3.cm2.x86_64.rpm
 krb5-debuginfo-1.19.4-3.cm2.x86_64.rpm
 krb5-devel-1.19.4-3.cm2.x86_64.rpm
 krb5-lang-1.19.4-3.cm2.x86_64.rpm
-libarchive-3.6.1-5.cm2.x86_64.rpm
-libarchive-debuginfo-3.6.1-5.cm2.x86_64.rpm
-libarchive-devel-3.6.1-5.cm2.x86_64.rpm
+libarchive-3.6.1-6.cm2.x86_64.rpm
+libarchive-debuginfo-3.6.1-6.cm2.x86_64.rpm
+libarchive-devel-3.6.1-6.cm2.x86_64.rpm
 libassuan-2.5.5-2.cm2.x86_64.rpm
 libassuan-debuginfo-2.5.5-2.cm2.x86_64.rpm
 libassuan-devel-2.5.5-2.cm2.x86_64.rpm