Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2016-8688
HistoryOct 17, 2016 - 1:17 p.m.

CVE-2016-8688

2016-10-1713:17:23
redhat.com
access.redhat.com
10

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON

The mtree bidder in libarchive 3.2.1 does not keep track of line sizes when extending the read-ahead, which allows remote attackers to cause a denial of service (crash) via a crafted file, which triggers an invalid read in the (1) detect_form or (2) bid_entry function in libarchive/archive_read_support_format_mtree.c.

Related

nessus 16
osv 3
cve 1
prion 1
debiancve 1
f5 1
ubuntucve 1
openvas 8
fedora 1
debian 2
ibm 1
cloudfoundry 1
ubuntu 1
gentoo 1
nessus
nessus
F5 Networks BIG-IP : libarchive vulnerability (K35263486)
2017-02-24 00:00:00
Debian DLA-661-1 : libarchive security update
2016-10-18 00:00:00
Splunk Enterprise < 5.0.17 / 6.0.13 / 6.1.12 / 6.2.13 / 6.3.9 / 6.4.5 / 6.5.2 or Splunk Light < 6.5.2 Multiple Vulnerabilities
2017-02-10 00:00:00
osv
osv
CVE-2016-8688
2017-02-15 19:59:00
libarchive - security update
2016-10-17 00:00:00
libarchive - security update
2018-11-29 00:00:00
cve
cve
CVE-2016-8688
2017-02-15 19:59:00
prion
prion
Design/Logic Flaw
2017-02-15 19:59:00
debiancve
debiancve
CVE-2016-8688
2017-02-15 19:59:00
f5
f5
K35263486 : libarchive vulnerability CVE-2016-8688
2017-02-23 00:00:00
ubuntucve
ubuntucve
CVE-2016-8688
2017-02-15 00:00:00
openvas
openvas
Fedora Update for mingw-libarchive FEDORA-2016-dd2aa2b4a9
2016-12-12 00:00:00
Ubuntu Update for libarchive USN-3225-1
2017-03-10 00:00:00
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2019-2604)
2020-01-23 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: mingw-libarchive-3.2.2-1.fc25
2016-12-11 00:31:07
debian
debian
[SECURITY] [DLA 661-1] libarchive security update
2016-10-17 20:52:31
[SECURITY] [DLA 1600-1] libarchive security update
2018-11-29 22:32:50
ibm
ibm
Security Bulletin: Multiple vulnerabilities affect Watson Explorer (CVE-2016-8688, CVE-2016-8689, CVE-2017-5601, CVE-2016-10209, CVE-2016-10350, CVE-2016-10349)
2018-08-22 13:38:10
cloudfoundry
cloudfoundry
USN-3225-1: libarchive vulnerabilities | Cloud Foundry
2017-03-31 00:00:00
ubuntu
ubuntu
libarchive vulnerabilities
2017-03-09 00:00:00
gentoo
gentoo
libarchive: Multiple vulnerabilities
2017-01-01 00:00:00

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON
Related for RH:CVE-2016-8688
nessus16osv3cve1prion1debiancve1f51ubuntucve1openvas8fedora1debian2ibm1cloudfoundry1ubuntu1gentoo1