EulerOS 2.0 SP11 : libarchive (EulerOS-SA-2026-2210)

According to the versions of the libarchive packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archivereaddata processing...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: libarchive (UTSA-2026-016784)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016784 advisory. A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archivereaddata processing path. When a specially...

[SECURITY] Fedora 44 Update: libarchive-3.8.7-1.fc44

Libarchive is a programming library that can create and read several different streaming archive formats, including most popular tar variants, several cpio formats, and both BSD and GNU ar variants. It can also write shar archives and read ISO9660 CDROM images and ZIP archives...

RHEL 9 : libarchive (RHSA-2026:8867)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:8867 advisory. The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660...

CVE-2026-5745

A flaw was found in libarchive. A NULL pointer dereference vulnerability exists in the ACL parsing logic, specifically within the archiveaclfromtextnl function. When processing a malformed ACL string such as a bare "d" or "default" tag without subsequent fields, the function fails to perform...

RHEL 9 : libarchive (RHSA-2026:5080)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:5080 advisory. The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM...

PT-2026-25310

Name of the Vulnerable Software and Affected Versions libarchive affected versions not specified Description A flaw exists in the RAR5 archive decompression logic within the archive read data processing path of the libarchive library. Processing a specially crafted RAR5 archive can cause the...

OESA-2025-2786 libarchive security update

is an open-source BSD-licensed C programming library that provides streaming access to a variety of different archive formats, including tar, cpio, pax, zip, and ISO9660 images. The distribution also includes bsdtar and bsdcpio, full-featured implementations of tar and cpio that use . Security...

JLSEC-2025-247 A vulnerability has been identified in the libarchive library

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to...

EUVD-2025-17575

Malicious code in bioql PyPI...

Important: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

Amazon Linux 2023 : bsdcat, bsdcpio, bsdtar (ALAS2023-2025-1091)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1091 advisory. A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over- read due to the size of a filter block potentially exceeding the...

OESA-2025-1624 libarchive security update

is an open-source BSD-licensed C programming library that provides streaming access to a variety of different archive formats, including tar, cpio, pax, zip, and ISO9660 images. The distribution also includes bsdtar and bsdcpio, full-featured implementations of tar and cpio that use . Security...

CVE-2025-5915

A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...

CVE-2025-5914

A vulnerability has been identified in the libarchive library, specifically within the archivereadformatrarseekdata function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enablin...

CVE-2025-5915

CVE-2025-5915 refers to a heap-based memory issue in the libarchive library caused by a filter block size potentially exceeding the LZSS window, which can lead to reading beyond the allocated buffer and cause crashes or memory disclosure. The connected documents indicate this affects libarchive a...

The vulnerability of the bsdunzip.c file in the Libarchive library allows a hacker to trigger a service failure.

The vulnerability of the bsdunzip.c file in the Libarchive library is related to a NULL pointer dereferencing error. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Libarchive library in the Windows operating system, allowing a hacker to execute arbitrary code

The vulnerability of the Libarchive library in the Windows operating system is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

OESA-2024-1715 libarchive security update

is an open-source BSD-licensed C programming library that provides streaming access to a variety of different archive formats, including tar, cpio, pax, zip, and ISO9660 images. The distribution also includes bsdtar and bsdcpio, full-featured implementations of tar and cpio that use . Security...

The vulnerability of the Libarchive library in the Windows operating system, allowing a hacker to execute arbitrary code

The vulnerability of the Libarchive library in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...