22 matches found
Advisory ROSA-SA-2025-2908
Software: libarchive 3.6.2 OS: ROSA-CHROME unaffected versions = libarchive-3.6.2-4 affected versions libarchive-3.6.2-4 CVE-ID: CVE-2024-26256 BDU-ID: 2024-02924 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libarchive archiving library is related to an operation exceeding buffer boundaries i...
TencentOS Server 4: libarchive (TSSA-2024:0171)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0171 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
CVE-2024-26256
creationtimestamp| type| source ---|---|--- 2024-12-19 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1698/...
Slackware: Security Advisory (SSA:2024-258-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[slackware-security] libarchive
New libarchive packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.7.5-i586-1slack15.0.txz: Upgraded. This update fixes the following security issues: fix multiple vulnerabilities...
USN-6805-1: libarchive vulnerability | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 22.04 Description It was discovered that libarchive incorrectly handled certain RAR archive files. An attacker could possibly use this issue to execute arbitrary code or cause a crash. Update Instructions: Run sudo pro fix...
CVE-2024-26256 affecting package libarchive for versions less than 3.6.1-3
CVE-2024-26256 affecting package libarchive for versions less than 3.6.1-3. A patched version of the package is available...
[SECURITY] [DSA 5706-1] libarchive security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5706-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 05, 2024 https://www.debian.org/security/faq -...
Debian dsa-5706 : libarchive-dev - security update
The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5706 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5706-1 [email protected] https://www.debian.org/security/...
Fedora 40 : libarchive (2024-cbb72aad83)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-cbb72aad83 advisory. Automatic update for libarchive-3.7.2-4.fc40. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
CVE-2024-26256
A flaw was found in the libarchive library. A heap-based buffer overflow in the executefiltere8 function in the libarchive/archivereadsupportformatrar.c file can be triggered when a specially crafted RAR archive is processed, causing a crash to the application linked to the library, and resulting...
Slackware: Security Advisory (SSA:2024-116-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[slackware-security] libarchive
New libarchive packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.7.3-i586-2slack15.0.txz: Rebuilt. Patched an out-of-bound error in the rar e8 filter that could allow for the...
BELL-CVE-2024-26256
Bulletin has no description...
ALPINE-CVE-2024-26256
Libarchive Remote Code Execution Vulnerability...
CVE-2024-26256 vulnerabilities
Vulnerabilities for packages: libarchive...
CVE-2024-26256
Libarchive Remote Code Execution Vulnerability...
CVE-2024-26256
Libarchive Remote Code Execution Vulnerability...
CVE-2024-26256
CVE-2024-26256 is a Libarchive remote code execution vulnerability. Multiple connected sources confirm a flaw in the libarchive library (notably in the rar e8 filter) that can lead to arbitrary code execution when processing crafted RAR archives. Public mitigations are version-specific: Debian li...
CVE-2024-26256 Libarchive Remote Code Execution Vulnerability
...