Libarchive

Libarchive

72 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2017-5601

  • EPSS 0.52%
  • Published 27.01.2017 22:59:08
  • Last modified 20.04.2025 01:37:25

An error in the lha_read_file_header_1() function (archive_read_support_format_lha.c) in libarchive 3.2.2 allows remote attackers to trigger an out-of-bounds read memory access and subsequently cause a crash via a specially crafted archive.

5.5

CVE-2016-7166

  • EPSS 0.25%
  • Published 21.09.2016 14:25:29
  • Last modified 12.04.2025 10:46:40

libarchive before 3.2.0 does not limit the number of recursive decompressions, which allows remote attackers to cause a denial of service (memory consumption and application crash) via a crafted gzip file.

8.6

CVE-2016-6250

  • EPSS 1.71%
  • Published 21.09.2016 14:25:19
  • Last modified 12.04.2025 10:46:40

Integer overflow in the ISO9660 writer in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via vectors related to verifying filename lengths when writing an ISO9660 archive, wh...

6.5

CVE-2016-5844

Exploit
  • EPSS 2.48%
  • Published 21.09.2016 14:25:16
  • Last modified 12.04.2025 10:46:40

Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a crafted ISO file.

7.5

CVE-2016-5418

Exploit
  • EPSS 5.22%
  • Published 21.09.2016 14:25:13
  • Last modified 12.04.2025 10:46:40

The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive file.

7.5

CVE-2016-4809

  • EPSS 2.26%
  • Published 21.09.2016 14:25:05
  • Last modified 12.04.2025 10:46:40

The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a CPIO archive with a large symlink.

7.8

CVE-2016-4302

Exploit
  • EPSS 2.34%
  • Published 21.09.2016 14:25:04
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in the parse_codes function in archive_read_support_format_rar.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a RAR file with a zero-sized dictionary.

7.8

CVE-2016-4301

Exploit
  • EPSS 1.44%
  • Published 21.09.2016 14:25:03
  • Last modified 12.04.2025 10:46:40

Stack-based buffer overflow in the parse_device function in archive_read_support_format_mtree.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a crafted mtree file.

7.8

CVE-2016-4300

Exploit
  • EPSS 1.77%
  • Published 21.09.2016 14:25:01
  • Last modified 12.04.2025 10:46:40

Integer overflow in the read_SubStreamsInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buf...

5.5

CVE-2015-8934

Exploit
  • EPSS 2.41%
  • Published 20.09.2016 14:15:20
  • Last modified 12.04.2025 10:46:40

The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted rar file.