View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2015-8925 severity moderate: SUSE including 10 source package names (bsdcpio-3.1.2-10.el7_2, bsdtar-3.1.2-10.el7_2, …), 24 product×package rows across 21 product lines (SUSE Liberty Linux 7, SUSE Linux Enterprise Desktop 12 SP1, … (21 product lines)): Fixed 24.
The readline function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (invalid read) via a crafted mtree file, related to newline parsing.