Lucene search

K
osvGoogleOSV:CVE-2017-14166
HistorySep 06, 2017 - 6:29 p.m.

CVE-2017-14166

2017-09-0618:29:00
Google
osv.dev
16

AI Score

6.4

Confidence

High

EPSS

0.021

Percentile

89.1%

libarchive 3.3.2 allows remote attackers to cause a denial of service (xml_data heap-based buffer over-read and application crash) via a crafted xar archive, related to the mishandling of empty strings in the atol8 function in archive_read_support_format_xar.c.