Lucene search
K

130 matches found

Tenable Nessus
Tenable Nessus
added 2019/10/11 12:0 a.m.39 views

Amazon Linux AMI : libarchive (ALAS-2019-1308)

libarchive 3.3.2 suffers from an out-of-bounds read within lhareaddatanone in archivereadsupportformatlha.c when extracting a specially crafted lha archive, related to lhacrc16.CVE-2017-14503 libarchive version commit 416694915449219d505531b1096384f3237dd6cc onwards release v3.1.0 onwards contain...

8.8CVSS6.3AI score0.04575EPSS
Exploits1References6
Amazon
Amazon
added 2019/10/08 12:0 a.m.50 views

Medium: libarchive

Issue Overview: libarchive 3.3.2 suffers from an out-of-bounds read within lhareaddatanone in archivereadsupportformatlha.c when extracting a specially crafted lha archive, related to lhacrc16.CVE-2017-14503 libarchive version commit 416694915449219d505531b1096384f3237dd6cc onwards release v3.1.0...

8.8CVSS7.4AI score0.04575EPSS
Exploits1
ALT Linux
ALT Linux
added 2019/08/22 12:0 a.m.23 views

Security fix for the ALT Linux 10 package libarchive version 3.4.0-alt1

Aug. 22, 2019 Aleksei Nikiforov 3.4.0-alt1 - Updated to upstream version 3.4.0. - Fixes: + CVE-2018-1000877 Double Free vulnerability in RAR decoder + CVE-2018-1000878 Use After Free vulnerability in RAR decoder + CVE-2018-1000879 NULL Pointer Dereference vulnerability in ACL parser +...

6.8CVSS7.7AI score0.04575EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2019/08/06 1:39 p.m.43 views

Moderate: Red Hat Security Advisory: libarchive security update

An update for libarchive is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.8CVSS6.6AI score0.04575EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2019/07/23 12:0 a.m.28 views

EulerOS 2.0 SP5 : libarchive (EulerOS-SA-2019-1681)

According to the versions of the libarchive package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libarchive version commit bf9aec176c6748f0ee7a678c5f9f9555b9a757c1 onwards release v3.0.2 onwards contains a CWE-125: Out-of-bounds Read...

6.5CVSS6.2AI score0.03407EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/07/09 12:0 a.m.39 views

EulerOS Virtualization for ARM 64 3.0.2.0 : libarchive (EulerOS-SA-2019-1714)

According to the versions of the libarchive package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - libarchive version commit 5a98dcf8a86364b3c2c469c85b93647dfb139961 onwards version v2.8.0 onwards contains a CWE-83...

6.5CVSS6.2AI score0.03407EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.34 views

EulerOS Virtualization 3.0.1.0 : libarchive (EulerOS-SA-2019-1470)

According to the versions of the libarchive package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libarchive. A specially crafted MTREE file could cause a small out-of-bounds read, potentially...

8.8CVSS7.5AI score0.11992EPSS
Exploits13References25
Tenable Nessus
Tenable Nessus
added 2019/04/15 12:0 a.m.36 views

openSUSE Security Update : libarchive (openSUSE-2019-1196)

This update for libarchive fixes the following issues : Security issues fixed : - CVE-2018-1000877: Fixed a double free vulnerability in RAR decoder bsc1120653 - CVE-2018-1000878: Fixed a Use-After-Free vulnerability in RAR decoder bsc1120654 - CVE-2018-1000879: Fixed a NULL pointer Dereference...

8.8CVSS6.2AI score0.04575EPSS
Exploits1References12
OSV
OSV
added 2019/04/12 7:23 a.m.10 views

OPENSUSE-SU-2019:1196-1 Security update for libarchive

This update for libarchive fixes the following issues: Security issues fixed: - CVE-2018-1000877: Fixed a double free vulnerability in RAR decoder bsc1120653 - CVE-2018-1000878: Fixed a Use-After-Free vulnerability in RAR decoder bsc1120654 - CVE-2018-1000879: Fixed a NULL Pointer Dereference...

8.8CVSS7.6AI score0.04575EPSS
Exploits1References13
OPENSUSE Linux
OPENSUSE Linux
added 2019/04/12 12:0 a.m.239 views

Security update for libarchive (moderate)

openSUSE Security Update: Security update for libarchive Announcement ID: openSUSE-SU-2019:1196-1 Rating: moderate References: 1120653 1120654 1120656 1120659 1124341 1124342 Cross-References: CVE-2018-1000877 CVE-2018-1000878 CVE-2018-1000879 CVE-2018-1000880 CVE-2019-1000019 CVE-2019-1000020...

8.8CVSS6.6AI score0.04575EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2019/04/02 12:0 a.m.33 views

SUSE SLED15 / SLES15 Security Update : libarchive (SUSE-SU-2019:0831-1)

This update for libarchive fixes the following issues : Security issues fixed : CVE-2018-1000877: Fixed a double free vulnerability in RAR decoder bsc1120653 CVE-2018-1000878: Fixed a Use-After-Free vulnerability in RAR decoder bsc1120654 CVE-2018-1000879: Fixed a NULL pointer Dereference...

8.8CVSS6.3AI score0.04575EPSS
Exploits1References19
Atlassian
Atlassian
added 2019/03/13 12:45 p.m.167 views

Embedded 7z vulnerable with a cvs score of 10

The embedded 7zip version is vulnerable. Please update...

2.3AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2019/03/13 12:45 p.m.21 views

Embedded 7z vulnerable with a cvs score of 10

The embedded 7zip version is vulnerable. Please update...

2.3AI score
Exploits0
Cloud Foundry
Cloud Foundry
added 2019/02/15 12:0 a.m.60 views

USN-3884-1: libarchive vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that libarchive incorrectly handled certain 7zip files. An attacker could possibly use this issue to cause a denial of service...

6.5CVSS7.7AI score0.03407EPSS
Exploits1
OSV
OSV
added 2019/02/13 11:8 a.m.12 views

MGASA-2019-0074 Updated libarchive packages fix security vulnerability

libarchive contains an out-of-bounds read vulnerability in 7zip decompression, archivereadsupportformat7zip.c, headerbytes that can result in a crash denial of service. This attack appears to be exploitable via the victim opening a specially crafted 7zip file CVE-2019-1000019. libarchive contains...

6.5CVSS7.2AI score0.03407EPSS
Exploits1References3
Mageia
Mageia
added 2019/02/13 11:8 a.m.39 views

Updated libarchive packages fix security vulnerability

libarchive contains an out-of-bounds read vulnerability in 7zip decompression, archivereadsupportformat7zip.c, headerbytes that can result in a crash denial of service. This attack appears to be exploitable via the victim opening a specially crafted 7zip file CVE-2019-1000019. libarchive contains...

6.5CVSS4.5AI score0.03407EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/02/08 12:0 a.m.38 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : libarchive vulnerabilities (USN-3884-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3884-1 advisory. It was discovered that libarchive incorrectly handled certain 7zip files. An attacker could possibly use this issue to cause a...

6.5CVSS6.3AI score0.03407EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2019/02/08 12:0 a.m.92 views

Ubuntu: Security Advisory (USN-3884-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.7AI score0.03407EPSS
Exploits1References2
Debian
Debian
added 2019/02/07 7:27 p.m.156 views

[SECURITY] [DLA 1668-1] libarchive security update

Package : libarchive Version : 3.1.2-11+deb8u7 CVE ID : CVE-2019-1000019 CVE-2019-1000020 Fuzzing found two further file-format specific issues in libarchive, a read-only segfault in 7z, and an infinite loop in ISO9660. CVE-2019-1000019 Out-of-bounds Read vulnerability in 7zip decompression, that...

6.5CVSS6.5AI score0.03407EPSS
Exploits1
Ubuntu
Ubuntu
added 2019/02/07 11:45 a.m.100 views

USN-3884-1: libarchive vulnerabilities

It was discovered that libarchive incorrectly handled certain 7zip files. An attacker could possibly use this issue to cause a denial of service. CVE-2019-1000019, CVE-2019-1000020...

6.5CVSS6.3AI score0.03407EPSS
Exploits1
Rows per page
Query Builder