4 matches found
OESA-2026-1944 libarchive security update
is an open-source BSD-licensed C programming library that provides streaming access to a variety of different archive formats, including tar, cpio, pax, zip, and ISO9660 images. The distribution also includes bsdtar and bsdcpio, full-featured implementations of tar and cpio that use . Security...
The vulnerability of the Libarchive library for working with archives, related to memory management after deallocation, allows an attacker to trigger a service failure.
The vulnerability of the library for working with Libarchive archives libarchive/archivereadsupportformatrar.c is related to a bug in the RAR format decoder. Exploiting this vulnerability may allow an attacker to cause service interruptions...
DEBIAN-CVE-2017-14121
The DecodeNumber function in unrarlib.c in unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a NULL pointer dereference flaw triggered by a crafted RAR archive. NOTE: this may be the same as one of the several test cases in the CVE-2017-11189 references...
RAR Path Traversal Vulnerability
RAR is a compressed file format. A path traversal vulnerability exists in versions 4.x and 5.x of RAR. A remote attacker can exploit this vulnerability to write arbitrary files with the help of a specially crafted archive file...