Lucene search
OracleLinuxELSA-2019-2298HistoryAug 13, 2019 - 12:00 a.m.
libarchive security update
2019-08-1300:00:00
linux.oracle.com
15
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.016 Low
EPSS
Percentile
86.0%
[3.1.2-12]
- fixed use after free in RAR decoder (#1700749)
- fixed double free in RAR decoder (#1700748)
[3.1.2-11] - fix out-of-bounds read within lha_read_data_none() (CVE-2017-14503)
- fix crash on crafted 7zip archives (CVE-2019-1000019)
- fix infinite loop in ISO9660 (CVE-2019-1000020)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | libarchive | < 3.1.2-12.el7 | libarchive-3.1.2-12.el7.src.rpm |
| oracle linux | 7 | aarch64 | bsdcpio | < 3.1.2-12.el7 | bsdcpio-3.1.2-12.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | bsdtar | < 3.1.2-12.el7 | bsdtar-3.1.2-12.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | libarchive | < 3.1.2-12.el7 | libarchive-3.1.2-12.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | libarchive-devel | < 3.1.2-12.el7 | libarchive-devel-3.1.2-12.el7.aarch64.rpm |
| oracle linux | 7 | src | libarchive | < 3.1.2-12.el7 | libarchive-3.1.2-12.el7.src.rpm |
| oracle linux | 7 | x86_64 | bsdcpio | < 3.1.2-12.el7 | bsdcpio-3.1.2-12.el7.x86_64.rpm |
| oracle linux | 7 | x86_64 | bsdtar | < 3.1.2-12.el7 | bsdtar-3.1.2-12.el7.x86_64.rpm |
| oracle linux | 7 | i686 | libarchive | < 3.1.2-12.el7 | libarchive-3.1.2-12.el7.i686.rpm |
| oracle linux | 7 | x86_64 | libarchive | < 3.1.2-12.el7 | libarchive-3.1.2-12.el7.x86_64.rpm |
Related
nessus
nessus
Oracle Linux 7 : libarchive (ELSA-2019-2298)
2023-09-07 00:00:00
CentOS 7 : libarchive (CESA-2019:2298)
2019-08-30 00:00:00
RHEL 7 : libarchive (RHSA-2019:2298)
2019-08-12 00:00:00
amazon
amazon
Medium: libarchive
2019-10-08 21:22:00
Medium: libarchive
2019-10-21 18:01:00
redhat
redhat
(RHSA-2019:3698) Moderate: libarchive security and bug fix update
2019-11-05 20:51:51
(RHSA-2019:2298) Moderate: libarchive security update
2019-08-06 08:22:47
centos
centos
bsdcpio, bsdtar, libarchive security update
2019-08-30 03:11:04
oraclelinux
oraclelinux
libarchive security and bug fix update
2019-11-14 00:00:00
suse
suse
Security update for libarchive (moderate)
2019-12-03 00:00:00
Security update for libarchive (moderate)
2019-12-04 00:00:00
Security update for libarchive (moderate)
2019-04-12 00:00:00
openvas
openvas
openSUSE: Security Advisory for libarchive (openSUSE-SU-2019:2615-1)
2019-12-04 00:00:00
openSUSE: Security Advisory for libarchive (openSUSE-SU-2019:2632-1)
2020-01-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:3093-1)
2021-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: libarchive-3.3.3-6.fc30
2019-03-29 19:40:47
[SECURITY] Fedora 29 Update: libarchive-3.3.3-6.fc29
2019-03-25 06:10:47
[SECURITY] Fedora 28 Update: libarchive-3.3.3-6.fc28
2019-04-05 01:56:18
archlinux
archlinux
[ASA-201906-21] libarchive: multiple issues
2019-06-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package libarchive version 3.4.0-alt1
2019-08-22 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2019-0004
2019-03-09 00:00:00
Important Photon OS Security Update - PHSA-2019-3.0-0004
2019-03-09 00:00:00
mageia
mageia
Updated libarchive packages fix security vulnerability
2019-02-13 14:08:25
Updated libarchive packages fix security vulnerabilities
2019-01-11 08:54:06
Updated libarchive packages fix security vulnerabilities
2018-09-01 00:11:59
osv
osv
libarchive - security update
2019-02-07 00:00:00
libarchive - security update
2018-12-21 00:00:00
CVE-2017-14503
2017-09-17 18:29:00
debian
debian
[SECURITY] [DLA 1668-1] libarchive security update
2019-02-07 19:27:54
[SECURITY] [DLA 1612-1] libarchive security update
2018-12-21 22:54:10
[SECURITY] [DSA 4360-1] libarchive security update
2018-12-27 16:40:27
cloudfoundry
cloudfoundry
USN-3884-1: libarchive vulnerabilities | Cloud Foundry
2019-02-15 00:00:00
USN-3859-1: libarchive vulnerabilities | Cloud Foundry
2019-01-24 00:00:00
USN-3736-1: libarchive vulnerabilities | Cloud Foundry
2018-09-11 00:00:00
ubuntu
ubuntu
libarchive vulnerabilities
2019-02-07 00:00:00
libarchive vulnerabilities
2019-01-15 00:00:00
libarchive vulnerabilities
2018-08-13 00:00:00
ubuntucve
ubuntucve
CVE-2018-1000877
2018-12-20 00:00:00
CVE-2018-1000878
2018-12-20 00:00:00
CVE-2017-14503
2017-09-17 00:00:00
prion
prion
Double free
2018-12-20 17:29:00
Design/Logic Flaw
2019-02-04 21:29:00
Design/Logic Flaw
2017-09-17 18:29:00
debiancve
debiancve
CVE-2018-1000878
2018-12-20 17:29:00
CVE-2019-1000019
2019-02-04 21:29:00
CVE-2019-1000020
2019-02-04 21:29:00
veracode
veracode
Out-of-bounds Read
2018-11-23 06:58:38
Denial Of Service (DoS)
2019-02-07 01:30:05
Denial Of Service (DoS)
2019-02-08 01:13:45
alpinelinux
alpinelinux
CVE-2017-14503
2017-09-17 18:29:00
cve
cve
CVE-2019-1000020
2019-02-04 21:29:00
CVE-2018-1000878
2018-12-20 17:29:00
CVE-2017-14503
2017-09-17 18:29:00
redhatcve
redhatcve
CVE-2019-1000020
2019-02-06 06:49:24
CVE-2018-1000877
2019-01-07 09:52:53
CVE-2018-1000878
2019-01-07 09:51:23
f5
f5
K18252740 : libarchive vulnerability CVE-2017-14503
2020-12-11 00:00:00
ibm
ibm
gentoo
gentoo
libarchive: Multiple vulnerabilities
2019-08-15 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.016 Low
EPSS
Percentile
86.0%
Related for ELSA-2019-2298