31 matches found
Denial Of Service
libarchive.so is vulnerable to Denial Of Service. The vulnerability is due to improper input validation in the WARC parser within the warcread function in libarchive/archivereadsupportformatwarc.c. This issue can be exploited by an attacker via crafting a malicious WARC file resulting in Denial O...
File Permission Bypass
libarchive.so is vulnerable to File Permission Bypass. The vulnerability exists due to a race condition in archivewritediskheader function at archivewritediskposix.c because the unmasking process does not take intro consideration other threads working on the same file, which allows an attacker to...
NULL Pointer Dereference
libarchive.so is vulnerable to NULL Pointer Dereference. The vulnerability exists due to the calloc function in archivewrite.c because insufficient check callings causes a NULL pointer exception when the function fails, resulting in possible denial of service conditions or in rare circumstances...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service attacks. A malicious user is able to cause an out-of-bounds read via the component zipxlzmaaloneinit, causing the application to crash...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service. The archivewstringappendfrommbs in archivestring.c allows an attacker to crash the application using a malicious archive due to an out-of-bounds read because of an incorrect mbrtowc or mbtowc call...
Arbitrary Code Execution
libarchive.so is vulnerable to arbitrary code execution. A use-after-free bug exists in the function archivereadformatrarreaddata in archivereadsupportformatrar.c as it does not properly handle archive files, allowing an attacker to execute arbtirary code in certain ARCHIVEFAILED situation by...
Arbitrary File Overwrite
libarchive.so is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as sandboxing restrictions can be evaded through hard links with data, causing file overwrites...
Denial Of Service (DoS) Through Stack Buffer Underflow
libarchive.so is vulnerable to denial of service DoS. The vulnerability exists due to a possible stack buffer underflow issue when parsing the ar header...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service. A double free bug is triggered when an attacker submits a malicious file to the function parsecodes with newsize = 0 in libarchive/archivereadsupportformatrar.c, causing the process to crash...
Out-of-bounds Read
libarchive.so is susceptible to out-of-bounds read. The attack is due to the lack of size check for entrybytesremaining in the function lhareaddatanone in archivereadsupportformatlha.c...
Out-of-bounds Read
libarchive.so is vulnerable to out-of-bounds read. The vulnerability exists because of a flaw in the function archivereadformatrarreadhead of archivereadsupportformatrar.c which increments the filenamesize after terminating with NULL...
Denial Of Service (DoS) Via Heap-Based Buffer Over-Read
libarchive.so is vulnerable to heap-based buffer over-read. The vulnerability can be triggered when an attacker input a malicious file to the archivele32dec function in archiveendian.h...
Remote Code Execution (RCE)
libarchive.so is vulnerable to remote code execution. A RAR file with an invalid zero dictionary size was not properly validated which leads to a zero-sized allocation for the dictionary storage and overwritten during the dictionary initialization, allowing a remote attacker to execute arbitrary...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass a lzh or lha file to the lhareadfileextendedheader function in archivereadsupportformatlha.c to cause an out-of-bounds read that can crash the application...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass a zip file to the processextra function in archivereadsupportformatzip.c to cause the application to crash...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass a rar file to the archivereadformatrarreaddata function in archivereadsupportformatrar.c, causing uninitialized memory to be accessed that can crash the applications...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass a zip file to the tradencdecryptupdate function in archivereadsupportformatzip.c, causing an out-of-bounds heap read that can crash the application...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass a tar file to the archivereadgetextract function in archivereadextract2.c, causing a memory leak that can crash the application...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass an iso file to the application to a cause an infinite loop that can crash the application...
Denial Of Service (DoS)
libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass a tar file to the archivereadformattarskip function in archivereadsupportformattar.c to cause the application to crash...