34 matches found
[SECURITY] Fedora 43 Update: 7zip-26.01-1.fc43
7-Zip is a file archiver with a high compression ratio. The main features of 7-Zip are: High compression ratio in 7z format with LZMA and LZMA2 compression Supported formats: Packing / unpacking: 7z, XZ, BZIP2, GZIP, TAR, ZIP and WIM Unpacking only: AR, ARJ, CAB, CHM, CPIO, CramFS, DMG, EXT, FAT,...
EUVD-2026-10403
node-tar Symlink Path Traversal via Drive-Relative Linkpath...
EUVD-2005-1083
Malware in sbrugna...
EUVD-2008-5878
Malware in sbrugna...
The vulnerability of the NArchive::NZip::CInArchive::FindCd function of the p7zip archive tool can potentially affect the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the NArchive::NZip::CInArchive::FindCd function in the p7zip archive tool is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...
[slackware-security] ark
New ark packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/ark-21.12.1-i586-2slack15.0.txz: Rebuilt. The ark archive tool in KDE was found to extract to absolute paths if they are present in the...
Arc 安全漏洞
ARC is a software package for creating and maintaining file archives. A security vulnerability exists in versions prior to Arc v1.6.0 that stems from the fact that configuration files are all readable, which could lead to a local attacker compromising information by leaking sensitive data from th...
K60565503: OpenJDK vulnerability CVE-2005-1080
Security Advisory Description Directory traversal vulnerability in the Java Archive Tool Jar utility in J2SE SDK 1.4.2 and 1.5, and OpenJDK, allows remote attackers to create or overwrite arbitrary files via a .. dot dot in filenames in a .jar file. CVE-2005-1080 Impact There is no impact; F5...
SAP SAPCAR 输入验证错误漏洞
SAP SAPCAR is a utility program from SAP Germany for compressing and/or decompressing SAP archive files. An input validation error vulnerability exists in SAP SAPCAR that stems from a failure to perform sufficient input validation. An attacker could exploit the vulnerability to gain privileged...
ALPINE-CVE-2021-20193
A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled consumption of memory. The highest threat from this vulnerability is to system availability...
The vulnerability of the Info-ZIP file archiver Unzip, related to buffer overflows, allows attackers to cause service interruptions.
The vulnerability of the Info-ZIP unzip file compressor is related to buffer overflow attacks. Exploiting this vulnerability allows an attacker to cause a service failure remotely...
cpio security bypass vulnerability
cpio is a set of file backup tools developed by the GNU Project for use in the UNIX operating system and as a file format. The tool supports depositing and reading files from cpio or tar-formatted archive packages. A security vulnerability exists in cpio 2.7 and later versions, which stems from t...
KDE Ark Arbitrary Code Execution Vulnerability
KDE is a free and open source X desktop management program for Linux and Unix workstations.KDE provides support for various network protocols through the KIO subsystem.Ark is one of the archive tools. An arbitrary code execution vulnerability exists in KDE Ark versions prior to 16.12.1. An attack...
SAP CAR Archive Tool Denial Of Service / Security Bypass
Advisory Information Title: SAP CAR Multiple Vulnerabilities Advisory ID: CORE-2016-0006 Advisory URL: http://www.coresecurity.com/advisories/sap-car-multiple-vulnerabilities Date published: 2016-08-09 Date of last update: 2016-08-09 Vendors contacted: SAP Release mode: Coordinated release 2...
SAP SAPCAR - Multiple Vulnerabilities
Advisory Information Title: SAP CAR Multiple Vulnerabilities Advisory ID: CORE-2016-0006 Advisory URL: http://www.coresecurity.com/advisories/sap-car-multiple-vulnerabilities Date published: 2016-08-09 Date of last update: 2016-08-09 Vendors contacted: SAP Release mode: Coordinated release 2...
OpenJDK: jar directory traversal issues (Tools, 8064601)
A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...
OpenJDK: jar directory traversal issues (Tools, 8064601)
A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...
OpenJDK: jar directory traversal issues (Tools, 8064601)
A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...
jar: directory traversal vulnerability
A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted...
Open-source ARJ archiver buffer overflow vulnerability
Open-source ARJ archiver is an ARJ archive processing tool. A buffer overflow vulnerability exists in Open-source ARJ archiver that allows an attacker to trick an application into parsing a specially crafted ARJ archive, which could crash the application or execute arbitrary code...