libarchive -- Infinite loop in corrupt archives handling in libarchive

ID 792BC222-C5D7-11DB-9F82-000E0C2E438A
Type freebsd
Reporter FreeBSD
Modified 2006-11-08T00:00:00


Problem Description: If the end of an archive is reached while attempting to "skip" past a region of an archive, libarchive will enter an infinite loop wherein it repeatedly attempts (and fails) to read further data. Impact: An attacker able to cause a system to extract (via "tar -x" or another application which uses libarchive) or list the contents (via "tar -t" or another libarchive-using application) of an archive provided by the attacker can cause libarchive to enter an infinite loop and use all available CPU time. Workaround: No workaround is available.