15 matches found
Photon OS 1.0: Binutils / Libarchive / Ntp PHSA-2017-0010 (deprecated)
An update of binutils,ntp,libarchive packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0010. The text itself is copyright C VMwar...
USN-3225-1: libarchive vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description It was discovered that libarchive incorrectly handled hardlink entries when extracting archives. A remote attacker could possibly use this issue to overwrite arbitrary files. CVE-2016-5418 Christian...
Ubuntu 14.04 LTS / 16.04 LTS : libarchive vulnerabilities (USN-3225-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3225-1 advisory. It was discovered that libarchive incorrectly handled hardlink entries when extracting archives. A remote attacker could possibly use this...
Ubuntu: Security Advisory (USN-3225-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-3225-1: libarchive vulnerabilities
It was discovered that libarchive incorrectly handled hardlink entries when extracting archives. A remote attacker could possibly use this issue to overwrite arbitrary files. CVE-2016-5418 Christian Wressnegger, Alwin Maier, and Fabian Yamaguchi discovered that libarchive incorrectly handled...
SUSE SLED12 / SLES12 Security Update : libarchive (SUSE-SU-2016:2911-1)
This update for libarchive fixes several issues. These security issues were fixed : - CVE-2016-8687: Buffer overflow when printing a filename bsc1005070. - CVE-2016-8689: Heap overflow when reading corrupted 7Zip files bsc1005072. - CVE-2016-8688: Use after free because of incorrect calculation i...
Debian DSA-3677-1 : libarchive - security update
Several vulnerabilities were discovered in libarchive, a multi-format archive and compression library, which may lead to denial of service memory consumption and application crash, bypass of sandboxing restrictions and overwrite arbitrary files with arbitrary data from an archive, or the executio...
CVE-2016-6250
Integer overflow in the ISO9660 writer in libarchive before 3.2.1 allows remote attackers to cause a denial of service application crash or execute arbitrary code via vectors related to verifying filename lengths when writing an ISO9660 archive, which trigger a buffer overflow...
CVE-2016-6250
Integer overflow in the ISO9660 writer in libarchive before 3.2.1 allows remote attackers to cause a denial of service application crash or execute arbitrary code via vectors related to verifying filename lengths when writing an ISO9660 archive, which trigger a buffer overflow...
CVE-2016-6250
Summary: CVE-2016-6250 affects libarchive’s ISO9660 writer and causes an integer overflow when verifying filename lengths during ISO9660 archive creation, potentially triggering a buffer overflow that can crash the application or allow code execution. Public disclosures and multiple vendor adviso...
CVE-2016-6250
Integer overflow in the ISO9660 writer in libarchive before 3.2.1 allows remote attackers to cause a denial of service application crash or execute arbitrary code via vectors related to verifying filename lengths when writing an ISO9660 archive, which trigger a buffer overflow...
CVE-2016-6250
Integer overflow in the ISO9660 writer in libarchive before 3.2.1 allows remote attackers to cause a denial of service application crash or execute arbitrary code via vectors related to verifying filename lengths when writing an ISO9660 archive, which trigger a buffer overflow...
Fedora Update for mingw-libarchive FEDORA-2016-472cdecb18
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for mingw-xz FEDORA-2016-472cdecb18
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 24 : mingw-libarchive / mingw-xz (2016-472cdecb18)
Jun 20, 2016: libarchive 3.2.1 released This fixes a handful of security and other critical issues with 3.2.0 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it...