|
2020-02-20
|
CVE-2020-9308 |
archive_read_support_format_rar5.c in libarchive before 3.4.2 attempts to unpack a RAR5 file with an invalid or corrupted header (such as a header size of zero), leading to a SIGSEGV or possibly unspecified other impact. |
Ubuntu_linux,
Libarchive
|
N/A
|
|
|
2019-11-21
|
CVE-2019-19221 |
In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive. |
Libarchive
|
N/A
|
|
|
2016-09-21
|
CVE-2016-7166 |
libarchive before 3.2.0 does not limit the number of recursive decompressions, which allows remote attackers to cause a denial of service (memory consumption and application crash) via a crafted gzip file. |
Libarchive,
Linux,
Enterprise_linux_desktop,
Enterprise_linux_hpc_node,
Enterprise_linux_hpc_node_eus,
Enterprise_linux_server,
Enterprise_linux_server_aus,
Enterprise_linux_server_eus,
Enterprise_linux_workstation
|
5.5
|
|
|
|
2016-09-21
|
CVE-2016-6250 |
Integer overflow in the ISO9660 writer in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via vectors related to verifying filename lengths when writing an ISO9660 archive, which trigger a buffer overflow. |
Libarchive,
Linux
|
8.6
|
|
|
|
2016-09-21
|
CVE-2016-5844 |
Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a crafted ISO file. |
Libarchive,
Linux,
Solaris,
Enterprise_linux_desktop,
Enterprise_linux_hpc_node,
Enterprise_linux_hpc_node_eus,
Enterprise_linux_server,
Enterprise_linux_server_aus,
Enterprise_linux_server_eus,
Enterprise_linux_workstation
|
6.5
|
|
|
|
2016-09-21
|
CVE-2016-5418 |
The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive file. |
Libarchive,
Linux,
Enterprise_linux_desktop,
Enterprise_linux_hpc_node,
Enterprise_linux_hpc_node_eus,
Enterprise_linux_server,
Enterprise_linux_server_aus,
Enterprise_linux_server_eus,
Enterprise_linux_workstation,
Openshift
|
7.5
|
|
|
|
2016-09-21
|
CVE-2016-4809 |
The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a CPIO archive with a large symlink. |
Libarchive,
Linux,
Enterprise_linux_desktop,
Enterprise_linux_hpc_node,
Enterprise_linux_hpc_node_eus,
Enterprise_linux_server,
Enterprise_linux_server_aus,
Enterprise_linux_server_eus,
Enterprise_linux_workstation
|
7.5
|
|
|
|
2016-09-20
|
CVE-2015-8922 |
The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted 7z file, related to the _7z_folder struct. |
Ubuntu_linux,
Libarchive,
Suse_linux_enterprise_desktop,
Suse_linux_enterprise_server,
Suse_linux_enterprise_software_development_kit,
Linux
|
5.5
|
|
|
2019-02-04
|
CVE-2019-1000020 |
libarchive version commit 5a98dcf8a86364b3c2c469c85b93647dfb139961 onwards (version v2.8.0 onwards) contains a CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in ISO9660 parser, archive_read_support_format_iso9660.c, read_CE()/parse_rockridge() that can result in DoS by infinite loop. This attack appears to be exploitable via the victim opening a specially crafted ISO9660 file. |
Ubuntu_linux,
Debian_linux,
Fedora,
Libarchive,
Leap,
Enterprise_linux_desktop,
Enterprise_linux_server,
Enterprise_linux_workstation
|
N/A
|
|
|
2019-02-04
|
CVE-2019-1000019 |
libarchive version commit bf9aec176c6748f0ee7a678c5f9f9555b9a757c1 onwards (release v3.0.2 onwards) contains a CWE-125: Out-of-bounds Read vulnerability in 7zip decompression, archive_read_support_format_7zip.c, header_bytes() that can result in a crash (denial of service). This attack appears to be exploitable via the victim opening a specially crafted 7zip file. |
Ubuntu_linux,
Debian_linux,
Fedora,
Libarchive,
Leap,
Enterprise_linux_desktop,
Enterprise_linux_server,
Enterprise_linux_workstation
|
N/A
|
|