libarchive 3.5.2 has been released on August 22:
It lists a few security fixes in the release announcement.
The updated packages fix several bugs including security vulnerabilities:
Fix handling of symbolic link ACLs on Linux.
Never follow symlinks when setting file flags on Linux.
Do not follow symlinks when processing the fixup list.
Updated packages in core/updates_testing:
MGA8 - 64bit
okay I installed
I created a link using (ln -s) command
The used bsdtar to archive the folder with the link
The resulting tar file did have the link in it, but did not download the contents of the link into the tar.
I was able to extract using archiver in gnome, it contained the link which still attempted to point to the folder (on another machine.
The tools seems to work, but I'm not sure I comprehend what this fixed.
MGA8-64 Plasma on Lenovo B50
No installation issues.
Ref bug 2337 for testing.
$ cd Documenten
Charts/ jetty/ main.js qtwebengin.txt thumbnail.py tutorialredis.txt win10reg/ wiresh/ ziekenhuis/
$ bsdtar -c -f ~/archtar *
Opened archtar with ark, all looks OK
$ cd ~/tmp/
[tester8@mach5 tmp]$ bsdtar -x -f /home/tester8/archtar
Checked contents of tmp: all files and folders are there OK.
Validating. Advisory in Comment 1.