10 matches found
TencentOS Server 4: libarchive (TSSA-2025:0056)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0056 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
CVE-2023-30571 vulnerabilities
Vulnerabilities for packages: libarchive...
CVE-2023-30571 vulnerabilities
Vulnerabilities for packages: libarchive...
Linux Distros Unpatched Vulnerability : CVE-2023-30571
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Libarchive through 3.6.2 can cause directories to have world-writable permissions. The umask call inside archivewritediskposix.c changes the umask of the whole...
RHEL 9 : libarchive (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libarchive: Race condition in multi-threaded use of archivewritediskheader on posix based systems CVE-2023-30571 No...
CVE-2023-30571
A vulnerability was found in libarchive. This issue can cause a race condition in a multi-threaded use of archivewritediskheader on posix based systems, which could allow implicit directory creation with permissions 777, without sticky bit, which means any low privileged user on the system can...
CVE-2023-30571
CVE-2023-30571 affects libarchive up to version 3.6.2. The umask() change in archive_write_disk_posix.c allows a race condition between threads that can leave the process with a permanent umask of 0, potentially causing implicit directory creation with 0777 permissions (without sticky bit). This ...
CVE-2023-30571
Libarchive through 3.6.2 can cause directories to have world-writable permissions. The umask call inside archivewritediskposix.c changes the umask of the whole process for a very short period of time; a race condition with another thread can lead to a permanent umask 0 setting. Such a race...
CVE-2023-30571
Libarchive through 3.6.2 can cause directories to have world-writable permissions. The umask call inside archivewritediskposix.c changes the umask of the whole process for a very short period of time; a race condition with another thread can lead to a permanent umask 0 setting. Such a race...
CVE-2023-30571
Libarchive through 3.6.2 can cause directories to have world-writable permissions. The umask call inside archivewritediskposix.c changes the umask of the whole process for a very short period of time; a race condition with another thread can lead to a permanent umask 0 setting. Such a race...