An update for libarchive is now available for HCE 2.0

HCE2-SA-2025-0208 An update for libarchive is now available for HCE 2.0 Critical HCE 2.0 Security Fix(es): A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdtar, potentially allowing for reading past the end of the file. This out-of-bounds read can lead to unintended consequences, including unpredictable program behavior, memory corruption, or a denial-of-service condition. (CVE-2025-5918) A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive (WARC) file that claims to have more than INT64_MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow, potentially leading to unpredictable program behavior, memory corruption, or a denial-of-service condition within applications that process such archives using libarchive. (CVE-2025-5916) A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition. (CVE-2025-5914) A vulnerability has been identified in the libarchive library. This flaw involves an _x27;off-by-one_x27; miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to unpredictable program behavior, crashes, or in specific circumstances, could be leveraged as a building block for more sophisticated exploitation. (CVE-2025-5917) HCE 2.0 bsdcat-3.5.2-1.r7.hce2.aarch64.rpm bsdcpio-3.5.2-1.r7.hce2.aarch64.rpm bsdtar-3.5.2-1.r7.hce2.aarch64.rpm libarchive-3.5.2-1.r7.hce2.aarch64.rpm libarchive-devel-3.5.2-1.r7.hce2.aarch64.rpm libarchive-help-3.5.2-1.r7.hce2.noarch.rpm bsdcat-3.5.2-1.r7.hce2.x86_64.rpm bsdcpio-3.5.2-1.r7.hce2.x86_64.rpm bsdtar-3.5.2-1.r7.hce2.x86_64.rpm libarchive-3.5.2-1.r7.hce2.x86_64.rpm libarchive-devel-3.5.2-1.r7.hce2.x86_64.rpm