Lucene search
K

10 matches found

RedHat Linux
RedHat Linux
added 2025/08/28 4:30 a.m.5 views

Important: Red Hat Security Advisory: libarchive security update

An update for libarchive is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update a...

7.8CVSS6.7AI score0.00326EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.3 views

RHEL 9 : libarchive (RHSA-2025:14141)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:14141 advisory. The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM...

7.8CVSS6.6AI score0.00326EPSS
Exploits2References4
OSV
OSV
added 2025/08/20 12:0 a.m.3 views

ALSA-2025:14130 Important: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

7.8CVSS6.7AI score0.00326EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.3 views

FreeBSD : FreeBSD -- Integer overflow in libarchive leading to double free (66f35fd9-73f5-11f0-8e0e-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 66f35fd9-73f5-11f0-8e0e-002590c1f29c advisory. An integer overflow in the archivereadformatrarseekdata function may lead to a double free problem...

7.8CVSS7.2AI score0.00326EPSS
Exploits2References2
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.2 views

Astra Linux – Vulnerability in libarchive

A vulnerability has been identified in the libarchive library, specifically within the archivereadformatrarseekdata function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, allowin...

7.8CVSS7.2AI score0.00326EPSS
Exploits2References3
OSV
OSV
added 2025/06/09 8:15 p.m.1 views

DEBIAN-CVE-2025-5914

A vulnerability has been identified in the libarchive library, specifically within the archivereadformatrarseekdata function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enablin...

7.8CVSS6.9AI score0.00326EPSS
Exploits2References1
OSV
OSV
added 2025/06/09 8:15 p.m.2 views

UBUNTU-CVE-2025-5914

A vulnerability has been identified in the libarchive library, specifically within the archivereadformatrarseekdata function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enablin...

7.8CVSS7.1AI score0.00326EPSS
Exploits2References9
Snyk
Snyk
added 2025/05/20 12:0 a.m.2 views

Double Free

Overview Affected versions of this package are vulnerable to Double Free via the archivereadformatrarseekdata function. An attacker can cause memory corruption or potentially execute arbitrary code by triggering a double-free condition through crafted input. Remediation Upgrade libarchive to...

7.8CVSS8AI score0.00326EPSS
Exploits2References3
Cvelist
Cvelist
added 2019/10/24 1:37 p.m.18 views

CVE-2019-18408

archivereadformatrarreaddata in archivereadsupportformatrar.c in libarchive before 3.4.0 has a use-after-free in a certain ARCHIVEFAILED situation, related to Ppmd7DecodeSymbol...

7.5AI score0.0404EPSS
Exploits0References15
Prion
Prion
added 2017/05/01 1:59 a.m.18 views

Heap overflow

The archivereadformatcabreadheader function in archivereadsupportformatcab.c in libarchive 3.2.2 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file...

4.3CVSS6.9AI score0.01605EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder