Lucene search
K

13 matches found

F5 Networks
F5 Networks
added 2024/11/20 11:47 p.m.36 views

K000148646: libarchive vulnerability CVE-2018-1000879

Security Advisory Description libarchive version commit 379867ecb330b3a952fb7bfa7bffb7bbd5547205 onwards release v3.3.0 onwards contains a CWE-476: NULL Pointer Dereference vulnerability in ACL parser - libarchive/archiveacl.c, archiveaclfromtextl that can result in Crash/DoS. This attack appear ...

6.5CVSS6.2AI score0.03367EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.31 views

RHEL 8 : libarchive (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libarchive: heap-based buffer overflow in archivestringappendfromwcs function in archivestring.c...

6.5CVSS8.3AI score0.04056EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2019:0831-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.04575EPSS
Exploits1References2
ALT Linux
ALT Linux
added 2019/08/22 12:0 a.m.87 views

Security fix for the ALT Linux 10 package libarchive version 3.4.0-alt1

Aug. 22, 2019 Aleksei Nikiforov 3.4.0-alt1 - Updated to upstream version 3.4.0. - Fixes: + CVE-2018-1000877 Double Free vulnerability in RAR decoder + CVE-2018-1000878 Use After Free vulnerability in RAR decoder + CVE-2018-1000879 NULL Pointer Dereference vulnerability in ACL parser +...

6.8CVSS7.7AI score0.04575EPSS
Exploits1
ArchLinux
ArchLinux
added 2019/06/25 12:0 a.m.39 views

[ASA-201906-21] libarchive: multiple issues

Arch Linux Security Advisory ASA-201906-21 ========================================== Severity: High Date : 2019-06-25 CVE-ID : CVE-2018-1000877 CVE-2018-1000878 CVE-2018-1000879 CVE-2018-1000880 CVE-2019-1000019 CVE-2019-1000020 Package : libarchive Type : multiple issues Remote : No Link :...

8.8CVSS1.9AI score0.04575EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2019/06/24 12:0 a.m.34 views

Photon OS 3.0: Libarchive PHSA-2019-3.0-0015

An update of the libarchive package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0015. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid126114;...

6.5CVSS6.5AI score0.04056EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2019/05/02 12:0 a.m.28 views

Fedora 30 : libarchive (2019-fbe83d0e32)

Security fix for CVE-2018-1000877 CVE-2018-1000878 CVE-2018-1000879 CVE-2018-1000880 ---- Applied various flaws from upsteam Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clea...

8.8CVSS6.3AI score0.04575EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2019/04/05 12:0 a.m.33 views

Fedora 28 : libarchive (2019-c595a93536)

Security fix for CVE-2018-1000877 CVE-2018-1000878 CVE-2018-1000879 CVE-2018-1000880 ---- Applied various flaws from upsteam Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clea...

8.8CVSS6.3AI score0.04575EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2019/03/26 12:0 a.m.30 views

Fedora 29 : libarchive (2019-0233ec0ff3)

Security fix for CVE-2018-1000877 CVE-2018-1000878 CVE-2018-1000879 CVE-2018-1000880 ---- Applied various flaws from upsteam Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clea...

8.8CVSS6.3AI score0.04575EPSS
Exploits1References7
Mageia
Mageia
added 2019/01/11 5:54 a.m.42 views

Updated libarchive packages fix security vulnerabilities

readheader in archivereadsupportformatrar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR archives, leading to an out-of-bounds read in archivereadformatrarreadheader CVE-2017-14502. Multiple security issues were found in libarchive: Processing malformed RAR archive...

8.8CVSS4.1AI score0.04575EPSS
Exploits0References3
OSV
OSV
added 2018/12/20 5:29 p.m.33 views

CVE-2018-1000879

libarchive version commit 379867ecb330b3a952fb7bfa7bffb7bbd5547205 onwards release v3.3.0 onwards contains a CWE-476: NULL Pointer Dereference vulnerability in ACL parser - libarchive/archiveacl.c, archiveaclfromtextl that can result in Crash/DoS. This attack appear to be exploitable via the vict...

6.5CVSS6.4AI score
Exploits0References8
CVE
CVE
added 2018/12/20 5:0 p.m.163 views

CVE-2018-1000879

CVE-2018-1000879 is a NULL Pointer Dereference in libarchive’s ACL parser (archive_acl_from_text_l()) that can cause a crash or DoS when a victim opens a specially crafted archive. The issue was reported for libarchive versions from commit 379867ec... onward (release 3.3.0+), with multiple adviso...

6.5CVSS7AI score0.03367EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2018/12/20 5:0 p.m.33 views

CVE-2018-1000879

libarchive version commit 379867ecb330b3a952fb7bfa7bffb7bbd5547205 onwards release v3.3.0 onwards contains a CWE-476: NULL Pointer Dereference vulnerability in ACL parser - libarchive/archiveacl.c, archiveaclfromtextl that can result in Crash/DoS. This attack appear to be exploitable via the vict...

6.5CVSS5.5AI score0.03367EPSS
Exploits0
Rows per page
Query Builder