5 matches found
SUSE CVE-2019-19221
In Libarchive 3.4.0, archivewstringappendfrommbs in archivestring.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive...
Libarchive Out-of-Bounds Read Vulnerability
libarchive is a multi-format archive and compression library. A buffer error vulnerability exists in the archivewstringappendfrommbs of the archivestring.c file in libarchive version 3.4.0. The vulnerability stems from a networked system or product performing operations in memory without properly...
ALPINE-CVE-2019-19221
In Libarchive 3.4.0, archivewstringappendfrommbs in archivestring.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive...
UBUNTU-CVE-2016-10209
The archivewstringappendfrommbs function in archivestring.c in libarchive 3.2.2 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted archive file...
PT-2016-4060 · Libarchive +2 · Libarchive +2
Name of the Vulnerable Software and Affected Versions: libarchive versions prior to 3.2.0 Description: The issue allows remote attackers to cause a denial of service crash via crafted cab files. This is related to "overlapping memcpy" in the archive string append function in archive string.c...